Vendor

WooCommerce

1 brief RSS

CVE-2026-4094: FOX – Currency Switcher Professional for WooCommerce Plugin Vulnerability

The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to unauthorized data loss (CVE-2026-4094) due to a missing capability check, allowing authenticated attackers with Contributor-level access or higher to delete the multi-currency configuration.

FOX – Currency Switcher Professional for WooCommerce plugin <= 1.4.5 wordpress woocommerce plugin csrf data-loss cve-2026-4094

2r 1t 1c 1h ago