cleantalk
Vulnerabilities and Security Researches

Exchange Rates Widget, CVE-2024-29814

CVE, Research URL

CVE-2024-29814

Home page URL

Security reports for Exchange Rates Widget

Application

Exchange Rates Widget

Published on
Mar 27, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CurrencyRate.Today Exchange Rates Widget allows Stored XSS.This issue affects Exchange Rates Widget: from n/a through 1.4.0.
Affected versions
Min -, max 1.4.1.
Status
vulnerable
Previous vulnerability researches
WP Currency Exchange Rates (CVE-2024-54332) , Dec 19, 2024
Exchange Rates (CVE-2025-30864) , Apr 02, 2025
Leartes TRY Exchange Rates (CVE-2025-31783) , Apr 03, 2025
Exchange Rates Widget (CVE-2024-29814) , Jun 06, 2024
New vulnerability
ElementsReady Addons for Elementor (CVE-2025-39546) , Apr 18, 2025
WordPress Internal Link Optimiser (CVE-2025-39547) , Apr 18, 2025
Silvasoft boekhouden (CVE-2025-32504) , Apr 18, 2025
WP Editor (CVE-2025-3295) , Apr 18, 2025
WP Editor (CVE-2025-3294) , Apr 18, 2025