Lucene search
High-Tech Bridge SAPATCHSTACK:80F2F6C01E5B3A1F395B19C48EF6EE39HistoryApr 29, 2015 - 12:00 a.m.
WordPress TheCartPress Plugin 1.3.9 - Multiple Vulnerabilities
2015-04-2900:00:00
High-Tech Bridge SA
patchstack.com
2
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
TheCartPress plugin is prone to multiple vulnerabilities, such as local PHP file inclusion, stored XSS, improper access control and multiple XSS vulnerabilities.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| thecartpress | le | 1.3.9 |
References
Related
cve
cve
CVE-2015-3300
2015-05-14 14:59:00
prion
prion
Cross site scripting
2015-05-14 14:59:00
wpvulndb
wpvulndb
TheCartPress <= 1.3.9 - Multiple Vulnerabilities
2015-04-29 00:00:00
securityvulns
securityvulns
Multiple Vulnerabilities in TheCartPress WordPress plugin
2015-05-11 00:00:00
packetstorm
packetstorm
WordPress TheCartPress 1.3.9 XSS / Local File Inclusion
2015-04-29 00:00:00
exploitpack
exploitpack
WordPress Plugin TheCartPress 1.3.9 - Multiple Vulnerabilities
2015-04-29 00:00:00
htbridge
htbridge
Multiple Vulnerabilities in TheCartPress WordPress plugin
2015-04-08 00:00:00
exploitdb
exploitdb
WordPress Plugin TheCartPress 1.3.9 - Multiple Vulnerabilities
2015-04-29 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related for PATCHSTACK:80F2F6C01E5B3A1F395B19C48EF6EE39