2 matches found
WordPress Welcart e-Commerce plugin <= 2.11.21 - Authenticated (Author+) SQL Injection via Cookie vulnerability
Authenticated Author+ SQL Injection via Cookie vulnerability discovered by Peter Thaleikis in WordPress Plugin Welcart e-Commerce versions = 2.11.21...
PT-2025-3867 · Unknown · Exelban Stats
Name of the Vulnerable Software and Affected Versions: exelban stats versions up to 2.11.21 Description: A critical issue has been found in the shouldAcceptNewConnection function of the XPC Service component, leading to command injection. This issue can be exploited locally. Recommendations: For...