Coolplugins Cryptocurrency Widgets — known CVE vulnerabilities
Every CVE whose affected-product data names Coolplugins Cryptocurrency Widgets, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2024-0709 — CVSS 9.8 (critical): The Cryptocurrency Widgets – Price Ticker & Coins List plugin for WordPress is vulnerable to SQL Injection via the 'coinslist' parameter…
CVE-2022-4950 — CVSS 8.8 (high): Several WordPress plugins developed by Cool Plugins are vulnerable to arbitrary plugin installation and activation that can lead to remote…
CVE-2024-43304 — CVSS 7.1 (high): Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Cool Plugins Cryptocurrency…