Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-55580

Malicious code in bioql PyPI...

7.6CVSS7.6AI score0.00529EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-26834

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.00431EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:10 a.m.8 views

CVE-2023-50847

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Collne Inc. Welcart e-Commerce.This issue affects Welcart e-Commerce: from n/a through 2.9.3...

7.6CVSS7.8AI score0.00529EPSS
Exploits0References1
NVD
NVD
added 2023/12/28 7:15 p.m.18 views

CVE-2023-50847

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Collne Inc. Welcart e-Commerce.This issue affects Welcart e-Commerce: from n/a through 2.9.3...

7.6CVSS0.00529EPSS
Exploits0References1
Prion
Prion
added 2023/12/28 7:15 p.m.17 views

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Collne Inc. Welcart e-Commerce.This issue affects Welcart e-Commerce: from n/a through 2.9.3...

5.8CVSS7.9AI score0.00529EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/28 6:15 p.m.57 views

CVE-2023-50847

CVE-2023-50847 is an SQL injection vulnerability in Welcart e-Commerce (Welcart e-Commerce plugin for WordPress). The issue arises from improper neutralization of input in SQL commands, enabling an authenticated attacker to manipulate queries. Affected versions are Welcart e-Commerce: from n/a th...

7.6CVSS7.8AI score0.00529EPSS
Exploits0References1Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/09/22 12:0 a.m.52 views

JVN#97197972: Multiple vulnerabilities in WordPress plugin "Welcart e-Commerce"

WordPress plugin "Welcart e-Commerce" provided by Collne Inc. contains multiple vulnerabilities listed below. Unrestricted Upload of File with Dangerous Type CWE-434 - CVE-2023-40219 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N| Base Score: 2.7 CVSS v2|...

8.8CVSS6.6AI score0.00949EPSS
Exploits0
NVD
NVD
added 2023/03/29 8:15 p.m.26 views

CVE-2023-22705

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Collne Inc. Welcart e-Commerce plugin = 2.8.10 versions...

7.1CVSS6.2AI score0.00431EPSS
Exploits0References1
Prion
Prion
added 2023/03/29 8:15 p.m.19 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Collne Inc. Welcart e-Commerce plugin = 2.8.10 versions...

5.8CVSS6AI score0.00431EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/03/29 7:32 p.m.50 views

CVE-2023-22705

CVE-2023-22705 concerns an unauthenticated, reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Welcart e-Commerce by Collne Inc., affecting versions

7.1CVSS6AI score0.00431EPSS
Exploits0References1Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/01/17 12:0 a.m.45 views

JVN#31073333: WordPress plugin "Welcart e-Commerce" vulnerable to directory traversal

WordPress plugin "Welcart e-Commerce" provided by Collne Inc. contains a directory traversal vulnerability CWE-22. Impact Arbitrary files on the server may be viewed by a remote attacker. Solution Update the plugin Update the plugin according to the information provided by the developer. The...

7.5CVSS7.5AI score0.02941EPSS
Exploits2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2016/06/24 12:0 a.m.39 views

JVN#61578437: WordPress plugin "Welcart e-Commerce" vulnerable to session management

WordPress plugin "Welcart e-Commerce" provided by Collne Inc. contains a vulnerability in session management. Impact A remote attacker who knows a user's e-mail address may log in with the user privilege. As a result, arbitrary operations may be conducted. Solution Update the Software Update to t...

6.5CVSS6.4AI score0.01772EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2016/06/24 12:0 a.m.29 views

JVN#95082904: WordPress plugin "Welcart e-Commerce" vulnerable to cross-site scripting

WordPress plugin "Welcart e-Commerce" provided by Collne Inc. contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the latest version according to the information provided by the develope...

6.1CVSS6AI score0.01491EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2015/12/17 12:0 a.m.31 views

JVN#43344629: Welcart vulnerable to SQL injection

Welcart provided by Collne Inc. is a WordPress plugin. Welcart contains an SQL injection vulnerability CWE-89 due to a flaw in the processing of searchcolumn and switch parameter in admin.php. Impact An unauthenticated attacker may obtain or alter information stored in the database. Solution Appl...

6.5CVSS6.6AI score0.01579EPSS
Exploits1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2015/07/24 12:0 a.m.32 views

JVN#92828286: Welcart vulnerable to SQL injection

Welcart provided by Collne Inc. is a WordPress plugin for creating shopping websites. Welcart contains a SQL injection CWE-89 vulnerability due to the processing of changeSort parameter in admin.php. Impact An attacker that can log in to WordPress with this plugin enabled may obtain or alter...

7.5CVSS6.7AI score0.02334EPSS
Exploits1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2015/07/24 12:0 a.m.41 views

JVN#97971874: Welcart vulnerable to cross-site scripting

Welcart provided by Collne Inc. is a WordPress plugin for creating shopping websites. Welcart contains a cross-site scripting CWE-79 vulnerability due to the processing of uscesreferer parameter in admin.php. Impact If a user views a malicious page while logged into WordPress with this plugin...

4.3CVSS5.8AI score0.02033EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2012/12/14 12:0 a.m.35 views

JVN#53269985: Welcart vulnerable to cross-site request forgery

Welcart provided by Collne Inc. is a WordPress plugin for creating shopping websites. Welcart contains a cross-site request forgery vulnerability. Impact If a logged in user views a malicious page after an item has been added in the shopping cart, the purchase process may unexpectedly be complete...

6.8CVSS6.1AI score0.0107EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2012/12/14 12:0 a.m.32 views

JVN#18731696: Welcart vulnerable to cross-site scripting

Welcart provided by Collne Inc. is a WordPress plugin for creating shopping websites. Welcart contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the management page of Welcart. Solution Update the software Update to the latest version according to the...

4.3CVSS5.8AI score0.01948EPSS
Exploits0
Rows per page
Query Builder