VYPR

Ql Cost Calculator

by WordPress

CVEs (2)

  • CVE-2021-24820MedFeb 28, 2022
    risk 0.42cvss 6.5epss 0.03

    The Cost Calculator WordPress plugin through 1.6 allows authenticated users (Contributor+ in versions < 1.5, and Admin+ in versions <= 1.6) to perform path traversal and local PHP file inclusion on Windows Web Servers via the Cost Calculator post's Layout

  • CVE-2025-54047MedJul 16, 2025
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in QuanticaLabs Cost Calculator ql-cost-calculator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cost Calculator: from n/a through <= 7.4.