Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackN/APATCHSTACK:FD246B1499F8CD98535D60226C99B0E8
HistoryOct 09, 2015 - 12:00 a.m.

WordPress Collne Welcart e-Commerce Plugin <= 1.5.2 - Multiple SQL Injection

2015-10-0900:00:00
N/A
patchstack.com
4

0.002 Low

EPSS

Percentile

57.4%

JSON

Multiple SQL Injection vulnerabilities are in admin.php in this plugin. These vulnerabilities allow an authenticated user to execute arbitrary SQL commands via the 1. search[column] or 2. switch parameter.

Solution

           Update the plugin.
CPENameOperatorVersion
welcart e-commercele1.5.2

Related

cve 1
jvn 1
prion 1
cvelist 1
seebug 1
nvd 1
wpvulndb 1
cve
cve
CVE-2015-7791
2015-12-29 22:59:06
jvn
jvn
JVN#43344629: Welcart vulnerable to SQL injection
2015-12-17 00:00:00
prion
prion
Sql injection
2015-12-29 22:59:00
cvelist
cvelist
CVE-2015-7791
2015-12-29 22:00:00
seebug
seebug
WordPress Welcart插件SQL注入漏洞(CVE-2015-7791)
2015-12-30 00:00:00
nvd
nvd
CVE-2015-7791
2015-12-29 22:59:06
wpvulndb
wpvulndb
Welcart e-Commerce < 1.5.3 - SQL Injection
2015-12-17 00:00:00

0.002 Low

EPSS

Percentile

57.4%

JSON
Related for PATCHSTACK:FD246B1499F8CD98535D60226C99B0E8
cve1jvn1prion1cvelist1seebug1nvd1wpvulndb1