Lucene search

CVE-2024-35667 WordPress Shopping Cart & eCommerce Store plugin <= 5.5.19 - Broken Access Control vulnerability

🗓️ 11 Jun 2024 14:09:09Reported by PatchstackType

WordPress Shopping Cart & eCommerce Store plugin has Broken Access Control and Missing Authorization vulnerabilitie

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
CVE	CVE-2024-35667	11 Jun 202415:16	–	cve
Patchstack	WordPress WP EasyCart Plugin <= 5.5.19 is vulnerable to Broken Access Control	3 Jun 202400:00	–	patchstack
NVD	CVE-2024-35667	11 Jun 202415:16	–	nvd
WPVulnDB	WP EasyCart < 5.6.0 - Missing Authorization	11 Jun 202400:00	–	wpvulndb
Vulnrichment	CVE-2024-35667 WordPress Shopping Cart & eCommerce Store plugin <= 5.5.19 - Broken Access Control vulnerability	11 Jun 202414:09	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (June 3, 2024 to June 9, 2024)	13 Jun 202415:35	–	wordfence

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "wp-easycart",
    "product": "WP EasyCart",
    "vendor": "WP EasyCart",
    "versions": [
      {
        "changes": [
          {
            "at": "5.6.0",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "5.5.19",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/wp-easycart/wordpress-shopping-cart-ecommerce-store-plugin-5-5-19-broken-access-control-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 Jun 2024 14:09Current

CVSS35.3

EPSS0.00096

CWE-862