According to the security firm CVE Program, the “Cryptocurrency Widgets – Price Ticker & Coins List plugin” WordPress widget carries a critical vulnerability from versions 2.0 through 2.6.5.
The Cyber Security Agency of Singapore (CSA) highlighted that a cryptocurrency widget plugin for the web development platform WordPress contains a vulnerability that can be used to extract sensitive information.
A security bulletin released by the Singapore Cyber Emergency Response Team (SingCERT) alerted against the plugin named “The Cryptocurrency Widgets – Price Ticker & Coins List,” marking it down for critical vulnerabilities.
As shown above, the crypto widget received a 9.8/10 base score, placing it at “critical,” which is the highest on the spectrum of vulnerabilities.
