Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) discovered by Xu-Liang Liao in WordPress Shopping Cart & eCommerce Store plugin (versions <= 5.1.0).
Update the WordPress Shopping Cart & eCommerce Store plugin to the latest available version (at least 5.1.1).
CPE | Name | Operator | Version |
---|---|---|---|
wp easycart | le | 5.1.0 |