4 matches found
CVE-2014-9308
creationtimestamp| type| source ---|---|--- 2015-02-10 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36043 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/wpeasycartunrestrictedfileupload.rb 2025-02-06...
Wordpress Shopping Cart Plugin Unrestricted File Upload (CVE-2014-9308)
An unauthorized file upload vulnerability has been reported in Wordpress Shopping Cart Plugin. A remote attacker could exploit this vulnerability by uploading a file to a server running the vulnerable application. Successful exploitation of this vulnerability could allow a remote attacker to...
CVE-2014-9308
CVE-2014-9308 affects the WP EasyCart WordPress plugin (before 3.0.9). The vulnerability is an unrestricted file upload in inc/amfphp/administration/banneruploaderscript.php that allows remote authenticated users to upload a PHP file with an executable extension and access it via products/banners...
WordPress Shopping Cart 3.0.4 Unrestricted File Upload
Exploit Title: WordPress Shopping Cart 3.0.4 Unrestricted File Upload Date: 29-10-2014 Software Link: https://wordpress.org/plugins/wp-easycart/ Exploit Author: Kacper Szurek Contact: http://twitter.com/KacperSzurek Website: http://security.szurek.pl/ CVE: CVE-2014-9308 Category: webapps 1...