RSS   Vulnerabilities for 'Welcart plugin'   RSS

2012-12-19
 
CVE-2012-5178

CWE-352
 

 
Cross-site request forgery (CSRF) vulnerability in the Welcart plugin before 1.2.2 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that complete a purchase.

 
 
CVE-2012-5177

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in the Welcart plugin before 1.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

 

 >>> Vendor: Welcart 3 Products
E-commerce
Welcart plugin
Welcart


Copyright 2024, cxsecurity.com

 

Back to Top