VYPR

Stylish Cost Calculator

by WordPress

Source repositories

CVEs (3)

  • CVE-2026-24630MedJan 23, 2026
    risk 0.42cvss 6.5epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Design Stylish Cost Calculator stylish-cost-calculator allows Stored XSS.This issue affects Stylish Cost Calculator: from n/a through <= 8.2.9.

  • CVE-2023-0983MedApr 10, 2023
    risk 0.40cvss 6.1epss 0.00

    The stylish-cost-calculator-premium WordPress plugin before 7.9.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Stored Cross-Site Scripting which could be used against admins when viewing submissions submitted through the Email…

  • CVE-2021-24822MedNov 29, 2021
    risk 0.35cvss 5.4epss 0.00

    The Stylish Cost Calculator WordPress plugin before 7.0.4 does not have any authorisation and CSRF checks on some of its AJAX actions (available to authenticated users), which could allow any authenticated users, such as subscriber to call them, and perform Stored Cross-Site…