Wpeasycart Wp Easycart — known CVE vulnerabilities
Every CVE whose affected-product data names Wpeasycart Wp Easycart, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2015-2673 — CVSS 8.8 (high): The ec_ajax_update_option and ec_ajax_clear_all_taxrates functions in inc/admin/admin_ajax_functions.php in the WP EasyCart plugin 1.1.30…
CVE-2023-1124 — CVSS 7.2 (high): The Shopping Cart & eCommerce Store WordPress plugin before 5.4.3 does not validate HTTP requests, allowing authenticated users with admin…
CVE-2023-3023 — CVSS 7.2 (high): The WP EasyCart plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in versions up to, and…
CVE-2014-9308 — CVSS 6.5 (medium): Unrestricted file upload vulnerability in inc/amfphp/administration/banneruploaderscript.php in the WP EasyCart (aka WordPress Shopping…
CVE-2023-2891 — CVSS 6.5 (medium): The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to…
CVE-2023-2892 — CVSS 6.5 (medium): The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to…
CVE-2023-2894 — CVSS 4.3 (medium): The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to…
CVE-2023-2895 — CVSS 4.3 (medium): The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to…
CVE-2023-2896 — CVSS 4.3 (medium): The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to…
CVE-2023-2893 — CVSS 4.3 (medium): The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to…