2 matches found
CVE-2015-2673
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/wpeasycartprivilegeescalation.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:38+00:0...
CVE-2015-2673
CVE-2015-2673 affects the WordPress WP EasyCart plugin (versions 1.1.30–3.0.20). The vulnerability resides in ec_ajax_update_option and ec_ajax_clear_all_taxrates in inc/admin/admin_ajax_functions.php, where lack of input validation allows authenticated users to modify any system option, enabling...