Lucene search
HistoryJun 16, 2012 - 12:55 a.m.
CVE-2012-3576
cve-2012-3576
unrestricted file upload
vulnerability
php/upload.php
wpstorecart plugin
wordpress
remote code execution
nvd
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.9 High
AI Score
Confidence
Low
0.31 Low
EPSS
Percentile
97.0%
Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/wpstorecart.
Affected configurations
Node
jquindlenwpstorecartRange≤2.5.29
ORjquindlenwpstorecartMatch0.62
ORjquindlenwpstorecartMatch1.0.0
ORjquindlenwpstorecartMatch2.0.0
ORjquindlenwpstorecartMatch2.0.1
ORjquindlenwpstorecartMatch2.0.2
ORjquindlenwpstorecartMatch2.0.3
ORjquindlenwpstorecartMatch2.0.4
ORjquindlenwpstorecartMatch2.0.5
ORjquindlenwpstorecartMatch2.0.6
ORjquindlenwpstorecartMatch2.0.7
ORjquindlenwpstorecartMatch2.0.8
ORjquindlenwpstorecartMatch2.0.9
ORjquindlenwpstorecartMatch2.0.10
ORjquindlenwpstorecartMatch2.0.11
ORjquindlenwpstorecartMatch2.0.12
ORjquindlenwpstorecartMatch2.0.13
ORjquindlenwpstorecartMatch2.1.0
ORjquindlenwpstorecartMatch2.1.1
ORjquindlenwpstorecartMatch2.1.2
ORjquindlenwpstorecartMatch2.1.3
ORjquindlenwpstorecartMatch2.1.4
ORjquindlenwpstorecartMatch2.1.5
ORjquindlenwpstorecartMatch2.1.6
ORjquindlenwpstorecartMatch2.1.7
ORjquindlenwpstorecartMatch2.1.8
ORjquindlenwpstorecartMatch2.2.0
ORjquindlenwpstorecartMatch2.2.1
ORjquindlenwpstorecartMatch2.2.2
ORjquindlenwpstorecartMatch2.2.3
ORjquindlenwpstorecartMatch2.2.4
ORjquindlenwpstorecartMatch2.2.5
ORjquindlenwpstorecartMatch2.2.6
ORjquindlenwpstorecartMatch2.2.7
ORjquindlenwpstorecartMatch2.2.8
ORjquindlenwpstorecartMatch2.2.9
ORjquindlenwpstorecartMatch2.3.0
ORjquindlenwpstorecartMatch2.3.1
ORjquindlenwpstorecartMatch2.3.2
ORjquindlenwpstorecartMatch2.3.3
ORjquindlenwpstorecartMatch2.3.4
ORjquindlenwpstorecartMatch2.3.5
ORjquindlenwpstorecartMatch2.3.6
ORjquindlenwpstorecartMatch2.3.7
ORjquindlenwpstorecartMatch2.3.8
ORjquindlenwpstorecartMatch2.3.9
ORjquindlenwpstorecartMatch2.3.10
ORjquindlenwpstorecartMatch2.3.11
ORjquindlenwpstorecartMatch2.3.12
ORjquindlenwpstorecartMatch2.3.13
ORjquindlenwpstorecartMatch2.3.14
ORjquindlenwpstorecartMatch2.3.15
ORjquindlenwpstorecartMatch2.3.16
ORjquindlenwpstorecartMatch2.3.17
ORjquindlenwpstorecartMatch2.4.0
ORjquindlenwpstorecartMatch2.4.1
ORjquindlenwpstorecartMatch2.4.2
ORjquindlenwpstorecartMatch2.4.3
ORjquindlenwpstorecartMatch2.4.4
ORjquindlenwpstorecartMatch2.4.5
ORjquindlenwpstorecartMatch2.4.6
ORjquindlenwpstorecartMatch2.4.7
ORjquindlenwpstorecartMatch2.4.8
ORjquindlenwpstorecartMatch2.4.9
ORjquindlenwpstorecartMatch2.4.10
ORjquindlenwpstorecartMatch2.4.11
ORjquindlenwpstorecartMatch2.4.12
ORjquindlenwpstorecartMatch2.4.13
ORjquindlenwpstorecartMatch2.4.14
ORjquindlenwpstorecartMatch2.5.0
ORjquindlenwpstorecartMatch2.5.1
ORjquindlenwpstorecartMatch2.5.2
ORjquindlenwpstorecartMatch2.5.3
ORjquindlenwpstorecartMatch2.5.4
ORjquindlenwpstorecartMatch2.5.5
ORjquindlenwpstorecartMatch2.5.6
ORjquindlenwpstorecartMatch2.5.7
ORjquindlenwpstorecartMatch2.5.8
ORjquindlenwpstorecartMatch2.5.9
ORjquindlenwpstorecartMatch2.5.10
ORjquindlenwpstorecartMatch2.5.11
ORjquindlenwpstorecartMatch2.5.12
ORjquindlenwpstorecartMatch2.5.13
ORjquindlenwpstorecartMatch2.5.14
ORjquindlenwpstorecartMatch2.5.15
ORjquindlenwpstorecartMatch2.5.16
ORjquindlenwpstorecartMatch2.5.17
ORjquindlenwpstorecartMatch2.5.18
ORjquindlenwpstorecartMatch2.5.19
ORjquindlenwpstorecartMatch2.5.20
ORjquindlenwpstorecartMatch2.5.21
ORjquindlenwpstorecartMatch2.5.22
ORjquindlenwpstorecartMatch2.5.23
ORjquindlenwpstorecartMatch2.5.24
ORjquindlenwpstorecartMatch2.5.25
ORjquindlenwpstorecartMatch2.5.26
ORjquindlenwpstorecartMatch2.5.27
ORjquindlenwpstorecartMatch2.5.28
wordpresswordpressMatch-
Related
prion
prion
Unrestricted file upload
2012-06-16 00:55:00
wpvulndb
wpvulndb
wpStoreCart 2.5.27-2.5.29 - Arbitrary File Upload
2014-08-01 00:00:00
dsquare
dsquare
WordPress wpStoreCart 2.5.29 File Upload
2012-06-25 00:00:00
openvas
openvas
patchstack
patchstack
WordPress WPStoreCart Plugin 2.5.27 - 2.5.29 - Arbitrary File Upload
2012-06-08 00:00:00
cvelist
cvelist
CVE-2012-3576
2012-06-16 00:00:00
nvd
nvd
CVE-2012-3576
2012-06-16 00:55:07
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.9 High
AI Score
Confidence
Low
0.31 Low
EPSS
Percentile
97.0%
Related for CVE-2012-3576