Lucene search
Japan Vulnerability NotesJVN:18731696HistoryDec 14, 2012 - 12:00 a.m.
JVN#18731696: Welcart vulnerable to cross-site scripting
2012-12-1400:00:00
Japan Vulnerability Notes
jvn.jp
16
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
50.8%
Welcart provided by Collne Inc. is a WordPress plugin for creating shopping websites. Welcart contains a cross-site scripting vulnerability.
Impact
An arbitrary script may be executed on the management page of Welcart.
Solution
Update the software
Update to the latest version according to the information provided by the developer.
Products Affected
- Welcart 1.2.1 and earlier
Related
cve
cve
CVE-2012-5177
2022-10-03 16:15:31
nvd
nvd
CVE-2012-5177
2012-12-19 11:55:55
cvelist
cvelist
CVE-2012-5177
2022-10-03 16:15:31
prion
prion
Cross site scripting
2012-12-19 11:55:00
patchstack
patchstack
WordPress Welcart Plugin <= 1.2.1 - XSS
2012-09-26 00:00:00
wpvulndb
wpvulndb
Welcart < 1.2.2 - XSS & CSRF
2012-12-14 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
50.8%
Related for JVN:18731696