Lucene search
K

28 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-7690

Malware in sbrugna...

6.5CVSS6.4AI score0.01579EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-20801

Malware in sbrugna...

8.8CVSS8.6AI score0.01879EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2016-5810

Malware in sbrugna...

6.5CVSS6.5AI score0.01772EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-5807

Malware in sbrugna...

6.8CVSS5.7AI score0.02858EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-5808

Malware in sbrugna...

6.1CVSS6.1AI score0.01491EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 5:53 a.m.4 views

CVE-2023-22705

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Collne Inc. Welcart e-Commerce plugin = 2.8.10 versions...

7.1CVSS5.8AI score0.00431EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:6 p.m.11 views

CVE-2020-28339

The usc-e-shop aka Collne Welcart e-Commerce plugin before 1.9.36 for WordPress allows Object Injection because of uscesunserialize. There is not a complete POP chain...

8.8CVSS7.2AI score0.01879EPSS
Exploits1References4
Prion
Prion
added 2020/11/07 7:15 p.m.15 views

Design/Logic Flaw

The usc-e-shop aka Collne Welcart e-Commerce plugin before 1.9.36 for WordPress allows Object Injection because of uscesunserialize. There is not a complete POP chain...

6.5CVSS8.9AI score0.01879EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2020/11/07 6:16 p.m.66 views

CVE-2020-28339

CVE-2020-28339 affects the WordPress plugin Welcart e-Commerce (usc-e-shop) up to version 1.9.36. The issue is an authenticated PHP Object Injection via usces_unserialize, with the CVE description noting there is not a complete POP chain. Affected: plugin in WordPress; root cause: object injectio...

8.8CVSS8.9AI score0.01879EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2016/06/28 12:0 a.m.4 views

WordPress Collne Welcart e-Commerce Plugin Executes Arbitrary PHP Code Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platforms developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL.Collne Welcart e-Commerce is one of the e-commerce plug-ins. A security vulnerability exists in the WordPress Collne Welcar...

6.8CVSS7.6AI score0.02858EPSS
Exploits0References1
OSV
OSV
added 2016/06/25 9:59 p.m.4 views

CVE-2016-4828

The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress mishandles sessions, which allows remote attackers to obtain access by leveraging knowledge of the e-mail address associated with an account...

6.5CVSS5.8AI score0.01772EPSS
Exploits0References3
NVD
NVD
added 2016/06/25 9:59 p.m.15 views

CVE-2016-4827

Cross-site scripting XSS vulnerability in the Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-4826...

6.1CVSS6.1AI score0.01491EPSS
Exploits0References3
OSV
OSV
added 2016/06/25 9:59 p.m.5 views

CVE-2016-4827

Cross-site scripting XSS vulnerability in the Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-4826...

6.1CVSS5.9AI score0.01491EPSS
Exploits0References3
OSV
OSV
added 2016/06/25 9:59 p.m.5 views

CVE-2016-4826

Cross-site scripting XSS vulnerability in the Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-4827...

6.1CVSS5.9AI score0.01491EPSS
Exploits0References3
NVD
NVD
added 2016/06/25 9:59 p.m.15 views

CVE-2016-4826

Cross-site scripting XSS vulnerability in the Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-4827...

6.1CVSS6.1AI score0.01491EPSS
Exploits0References3
NVD
NVD
added 2016/06/25 9:59 p.m.11 views

CVE-2016-4825

The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via crafted serialized data...

6.8CVSS6.3AI score0.02858EPSS
Exploits0References3
Prion
Prion
added 2016/06/25 9:59 p.m.12 views

Design/Logic Flaw

The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via crafted serialized data...

6.8CVSS8.4AI score0.02858EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2016/06/25 9:0 p.m.19 views

CVE-2016-4826

Cross-site scripting XSS vulnerability in the Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-4827...

6.1AI score0.01491EPSS
Exploits0References3
CVE
CVE
added 2016/06/25 9:0 p.m.50 views

CVE-2016-4828

The CVE affects WordPress plugin Collne Welcart e-Commerce, prior to version 1.8.3. A vulnerability in session handling lets a remote attacker log in as a user by knowing the user’s e-mail address, granting user-level access and enabling arbitrary operations as described in multiple sources. Reme...

6.5CVSS6.5AI score0.01772EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2016/06/25 9:0 p.m.18 views

CVE-2016-4825

The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via crafted serialized data...

6.3AI score0.02858EPSS
Exploits0References3
Rows per page
Query Builder