Cost Calculator Builder
Approved changes feed: RSS · Atom
cpe:2.3:a:stylemixthemes:cost_calculator_builder:*:*:*:*:pro:wordpress:*:*
part: a version: * update: *
| Vendor | Stylemixthemes (a955917c-2229-564b-bd01-1fb4beeda74f) |
|---|---|
| Product | Cost Calculator Builder (bf72f313-c226-51a5-a583-0df49e43889b) |
| Edition | * |
| Language | * |
| Software edition | pro |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-6010 |
vulnerable | 2026-06-03 14:57:55.031692 |
Cost Calculator Builder PRO <= 3.2.1 - Unauthenticated Price Manipulation
MEDIUM (5.3)
The Cost Calculator Builder PRO plugin for WordPress is vulnerable to price manipulation in all versions up to, and including, 3.2.1. This is due to the plugin allowing the price field to be manipulated prior to processing via the 'create_cc_order' function, called from the Cost Calculator Builder plugin. This makes it possible for unauthenticated attackers to manipulate the price of orders submitted via the calculator. Note: this vulnerability was partially patched with the release of Cost Calculator Builder version 3.2.17.
Published: 2024-09-07T11:17:06.172Z
Updated: 2026-04-08T17:34:39.215Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.