Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2015-2673

🗓️ 06 Oct 2017 22:00:00Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 42 Views🌐 WEB

WP EasyCart plugin 1.1.30 through 3.0.20 for WordPress allows remote attackers to gain admin privileges

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Circl		CVE-2015-2673
29 May 201815:50
circl
CNVD		Wordpress WP EasyCart Plugin Information Disclosure Vulnerability
17 Oct 201700:00
cnvd
Cvelist		CVE-2015-2673
6 Oct 201722:00
cvelist
Dsquare		WordPress WP EasyCart Privilege Escalation
15 May 201500:00
dsquare
Metasploit		WordPress WP EasyCart Plugin Privilege Escalation
24 Feb 201521:11
metasploit
NVD		CVE-2015-2673
6 Oct 201722:29
nvd
Packet Storm		WordPress WP EasyCart Plugin Privilege Escalation
31 Aug 202400:00
packetstorm
Patchstack		WordPress EasyCart Plugin <= 3.0.20 - Privilege Escalation
26 Feb 201500:00
patchstack
Prion		Code injection
6 Oct 201722:29
prion
WPVulnDB		EasyCart 1.1.30 - 3.0.20 - Privilege Escalation
26 Feb 201500:00
wpvulndb
Rows per page
NVD
Node
wpeasycartwp_easycartMatch1.1.30wordpress
OR
wpeasycartwp_easycartMatch1.1.31wordpress
OR
wpeasycartwp_easycartMatch1.1.32wordpress
OR
wpeasycartwp_easycartMatch1.1.33wordpress
OR
wpeasycartwp_easycartMatch1.1.34wordpress
OR
wpeasycartwp_easycartMatch1.1.35wordpress
OR
wpeasycartwp_easycartMatch1.1.36wordpress
OR
wpeasycartwp_easycartMatch1.2.0wordpress
OR
wpeasycartwp_easycartMatch1.2.1wordpress
OR
wpeasycartwp_easycartMatch1.2.2wordpress
OR
wpeasycartwp_easycartMatch1.2.3wordpress
OR
wpeasycartwp_easycartMatch1.2.4wordpress
OR
wpeasycartwp_easycartMatch1.2.5wordpress
OR
wpeasycartwp_easycartMatch1.2.6wordpress
OR
wpeasycartwp_easycartMatch1.2.7wordpress
OR
wpeasycartwp_easycartMatch1.2.8wordpress
OR
wpeasycartwp_easycartMatch1.2.9wordpress
OR
wpeasycartwp_easycartMatch1.2.10wordpress
OR
wpeasycartwp_easycartMatch1.2.11wordpress
OR
wpeasycartwp_easycartMatch1.2.12wordpress
OR
wpeasycartwp_easycartMatch1.2.13wordpress
OR
wpeasycartwp_easycartMatch1.2.14wordpress
OR
wpeasycartwp_easycartMatch1.2.15wordpress
OR
wpeasycartwp_easycartMatch1.2.16wordpress
OR
wpeasycartwp_easycartMatch2.0.1wordpress
OR
wpeasycartwp_easycartMatch2.0.1@824267wordpress
OR
wpeasycartwp_easycartMatch2.0.2wordpress
OR
wpeasycartwp_easycartMatch2.0.3wordpress
OR
wpeasycartwp_easycartMatch2.0.4wordpress
OR
wpeasycartwp_easycartMatch2.0.5wordpress
OR
wpeasycartwp_easycartMatch2.0.6wordpress
OR
wpeasycartwp_easycartMatch2.0.7wordpress
OR
wpeasycartwp_easycartMatch2.0.8wordpress
OR
wpeasycartwp_easycartMatch2.0.9wordpress
OR
wpeasycartwp_easycartMatch2.0.10wordpress
OR
wpeasycartwp_easycartMatch2.0.11wordpress
OR
wpeasycartwp_easycartMatch2.0.12wordpress
OR
wpeasycartwp_easycartMatch2.0.13wordpress
OR
wpeasycartwp_easycartMatch2.0.14wordpress
OR
wpeasycartwp_easycartMatch2.0.15wordpress
OR
wpeasycartwp_easycartMatch2.0.16wordpress
OR
wpeasycartwp_easycartMatch2.0.17wordpress
OR
wpeasycartwp_easycartMatch2.0.18wordpress
OR
wpeasycartwp_easycartMatch2.0.19wordpress
OR
wpeasycartwp_easycartMatch2.0.20wordpress
OR
wpeasycartwp_easycartMatch2.0.21wordpress
OR
wpeasycartwp_easycartMatch2.0.22wordpress
OR
wpeasycartwp_easycartMatch2.1.0wordpress
OR
wpeasycartwp_easycartMatch2.1.1wordpress
OR
wpeasycartwp_easycartMatch2.1.2wordpress
OR
wpeasycartwp_easycartMatch2.1.3wordpress
OR
wpeasycartwp_easycartMatch2.1.4wordpress
OR
wpeasycartwp_easycartMatch2.1.5wordpress
OR
wpeasycartwp_easycartMatch2.1.6wordpress
OR
wpeasycartwp_easycartMatch2.1.7wordpress
OR
wpeasycartwp_easycartMatch2.1.8wordpress
OR
wpeasycartwp_easycartMatch2.1.9wordpress
OR
wpeasycartwp_easycartMatch2.1.10wordpress
OR
wpeasycartwp_easycartMatch2.1.11wordpress
OR
wpeasycartwp_easycartMatch2.1.12wordpress
OR
wpeasycartwp_easycartMatch2.1.13wordpress
OR
wpeasycartwp_easycartMatch2.1.14wordpress
OR
wpeasycartwp_easycartMatch2.1.15wordpress
OR
wpeasycartwp_easycartMatch2.1.16wordpress
OR
wpeasycartwp_easycartMatch2.1.17wordpress
OR
wpeasycartwp_easycartMatch2.1.18wordpress
OR
wpeasycartwp_easycartMatch2.1.19wordpress
OR
wpeasycartwp_easycartMatch2.1.20wordpress
OR
wpeasycartwp_easycartMatch2.1.21wordpress
OR
wpeasycartwp_easycartMatch2.1.22wordpress
OR
wpeasycartwp_easycartMatch2.1.23wordpress
OR
wpeasycartwp_easycartMatch2.1.24wordpress
OR
wpeasycartwp_easycartMatch2.1.25wordpress
OR
wpeasycartwp_easycartMatch2.1.26wordpress
OR
wpeasycartwp_easycartMatch2.1.27wordpress
OR
wpeasycartwp_easycartMatch2.1.28wordpress
OR
wpeasycartwp_easycartMatch2.1.29wordpress
OR
wpeasycartwp_easycartMatch2.1.30wordpress
OR
wpeasycartwp_easycartMatch2.1.31wordpress
OR
wpeasycartwp_easycartMatch2.1.32wordpress
OR
wpeasycartwp_easycartMatch2.1.33wordpress
OR
wpeasycartwp_easycartMatch2.1.34wordpress
OR
wpeasycartwp_easycartMatch2.1.35wordpress
OR
wpeasycartwp_easycartMatch2.1.36wordpress
OR
wpeasycartwp_easycartMatch3.0.0wordpress
OR
wpeasycartwp_easycartMatch3.0.1wordpress
OR
wpeasycartwp_easycartMatch3.0.2wordpress
OR
wpeasycartwp_easycartMatch3.0.3wordpress
OR
wpeasycartwp_easycartMatch3.0.4wordpress
OR
wpeasycartwp_easycartMatch3.0.5wordpress
OR
wpeasycartwp_easycartMatch3.0.6wordpress
OR
wpeasycartwp_easycartMatch3.0.7wordpress
OR
wpeasycartwp_easycartMatch3.0.8wordpress
OR
wpeasycartwp_easycartMatch3.0.9wordpress
OR
wpeasycartwp_easycartMatch3.0.10wordpress
OR
wpeasycartwp_easycartMatch3.0.11wordpress
OR
wpeasycartwp_easycartMatch3.0.12wordpress
OR
wpeasycartwp_easycartMatch3.0.13wordpress
OR
wpeasycartwp_easycartMatch3.0.14wordpress
OR
wpeasycartwp_easycartMatch3.0.15wordpress
OR
wpeasycartwp_easycartMatch3.0.16wordpress
OR
wpeasycartwp_easycartMatch3.0.17wordpress
OR
wpeasycartwp_easycartMatch3.0.18wordpress
OR
wpeasycartwp_easycartMatch3.0.19wordpress
OR
wpeasycartwp_easycartMatch3.0.20wordpress
ParameterPositionPathDescriptionCWE
option_namerequest bodywp-admin/admin-ajax.phpPrivilege escalation by abusing WordPress WP EasyCart plugin AJAX option update to set system options without validationCWE-264
option_valuerequest bodywp-admin/admin-ajax.phpPrivilege escalation by abusing WordPress WP EasyCart plugin AJAX option update to set system options without validationCWE-264

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
13 May 2026 00:24Current
9.1High risk
Vulners AI Score9.1
CVSS 26.5
CVSS 38.8
EPSS0.63767
CWE-264
cve-2015-2673wp easycart pluginwordpressremote attackersadmin privilegesarbitrary codenvd
42