Curcy CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Villatheme Subscriptions

Filtered by product Curcy Subscriptions

Search

Switch to Advanced Search (Beta)

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-49283	1 Villatheme	1 Curcy	2025-07-12	7.1 High
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in VillaTheme CURCY allows Reflected XSS.This issue affects CURCY: from n/a through 2.2.3.
CVE-2025-47563	1 Villatheme	1 Curcy	2025-06-24	5.3 Medium
Missing Authorization vulnerability in villatheme CURCY allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects CURCY: from n/a through 2.3.7.
CVE-2022-46796	2 Villatheme, Wordpress	2 Curcy, Wordpress	2024-12-23	6.5 Medium
Missing Authorization vulnerability in VillaTheme CURCY allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CURCY: from n/a through 2.1.25.
CVE-2023-50831	1 Villatheme	1 Curcy	2024-11-21	6.5 Medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VillaTheme CURCY – Multi Currency for WooCommerce allows Stored XSS.This issue affects CURCY – Multi Currency for WooCommerce: from n/a through 2.2.0.

Page 1 of 1.