Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 2025/11/13 4:15 a.m.2 views

CVE-2025-12979

The Welcart e-Commerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'uscesexport' action in all versions up to, and including, 2.11.24. This makes it possible for unauthenticated attackers to access configured payment credentials ex...

5.3CVSS0.00089EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/11/13 3:27 a.m.2 views

CVE-2025-12979 Welcart e-Commerce <= 2.11.24 - Missing Authorization to Unauthenticated Information Exposure

The Welcart e-Commerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'uscesexport' action in all versions up to, and including, 2.11.24. This makes it possible for unauthenticated attackers to access configured payment credentials ex...

5.3CVSS5.1AI score0.00089EPSS
Exploits0References2
Patchstack
Patchstackadded 2025/11/12 11:16 p.m.4 views

WordPress Welcart e-Commerce plugin <= 2.11.24 - Missing Authorization to Unauthenticated Information Exposure vulnerability

Missing Authorization to Unauthenticated Information Exposure vulnerability discovered by dudekmar - CERT.PL in WordPress Plugin Welcart e-Commerce versions = 2.11.24...

5.3CVSS6.7AI score0.00089EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVEadded 2025/10/28 2:38 a.m.2 views

CVE-2025-62953

Missing Authorization vulnerability in info@welcart Welcart e-Commerce usc-e-shop allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Welcart e-Commerce: from n/a through = 2.11.24...

4.3CVSS5.9AI score0.00042EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/27 3:30 a.m.2 views

EUVD-2025-35989

Missing Authorization vulnerability in nanbu Welcart e-Commerce usc-e-shop allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Welcart e-Commerce: from n/a through = 2.11.24...

6.5AI score0.00042EPSS
Exploits0References2
CVE
CVEadded 2025/10/27 1:34 a.m.12 views

CVE-2025-62953

CVE-2025-62953 describes a missing authorization flaw in the WordPress plugin Welcart e-Commerce (usc-e-shop), affecting versions up to 2.11.24. The issue is a broken/incorrectly configured access control that allows an unauthorized actor to bypass security levels. Public sources in the connected...

4.3CVSS5.9AI score0.00042EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/10/14 9:9 a.m.5 views

WordPress Welcart e-Commerce plugin <= 2.11.24 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Welcart e-Commerce versions = 2.11.24...

8.8CVSS7AI score0.00042EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVEadded 2025/04/24 3:24 a.m.1 views

SUSE CVE-2025-32431

Traefik pronounced traffic is an HTTP reverse proxy and load balancer. In versions prior to 2.11.24, 3.3.6, and 3.4.0-rc2. There is a potential vulnerability in Traefik managing the requests using a PathPrefix, Path or PathRegex matcher. When Traefik is configured to route the requests to a backe...

9.1CVSS4AI score0.00322EPSS
Exploits0References3
Rows per page
Query Builder