116 matches found
CVE-2026-24580 WordPress Ecwid Shopping Cart plugin <= 7.0.5 - Broken Access Control vulnerability
Missing Authorization vulnerability in Ecwid by Lightspeed Ecommerce Shopping Cart Ecwid Shopping Cart ecwid-shopping-cart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ecwid Shopping Cart: from n/a through = 7.0.5...
PT-2026-4445
Name of the Vulnerable Software and Affected Versions Ecwid Shopping Cart versions through 7.0.5 Description The Ecwid Shopping Cart software contains a flaw related to incorrectly configured access control security levels, potentially allowing unauthorized access. The issue is a missing...
WordPress plugin Ecwid Shopping Cart has a security vulnerability
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...
PT-2026-4419
Name of the Vulnerable Software and Affected Versions Ecwid Shopping Cart versions through 7.0.5 Description The Ecwid Shopping Cart software contains a flaw related to incorrectly configured access control security levels, potentially allowing unauthorized access. The issue allows exploitation d...
WordPress plugin Ecwid Shopping Cart has a security vulnerability
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...
WordPress Ecwid Shopping Cart plugin <= 7.0.5 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Rapid0nion in WordPress Plugin Ecwid Shopping Cart versions = 7.0.5...
WordPress Ecwid Shopping Cart plugin <= 7.0.6 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Ecwid Shopping Cart versions = 7.0.6...
CVE-2024-2456
The Ecwid Ecommerce Shopping Cart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 6.12.10 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
EUVD-2023-28433
Malicious code in bioql PyPI...
EUVD-2023-28464
Malicious code in bioql PyPI...
EUVD-2022-34693
Malicious code in bioql PyPI...
EUVD-2024-27405
Malicious code in bioql PyPI...
EUVD-2023-58535
Malicious code in bioql PyPI...
EUVD-2023-56245
Malicious code in bioql PyPI...
EUVD-2025-9822
Malicious code in bioql PyPI...
EUVD-2025-4818
Malicious code in bioql PyPI...
CVE-2023-51533
Cross-Site Request Forgery CSRF vulnerability in Ecwid Ecommerce Ecwid Ecommerce Shopping Cart.This issue affects Ecwid Ecommerce Shopping Cart: from n/a through 6.12.4...
CVE-2023-6292
The Ecwid Ecommerce Shopping Cart WordPress plugin before 6.12.5 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
CVE-2023-24408
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Ecwid Ecommerce Ecwid Ecommerce Shopping Cart plugin = 6.11.4 versions...
CVE-2025-32195
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ecwid by Lightspeed Ecommerce Shopping Cart Ecwid Shopping Cart ecwid-shopping-cart allows Stored XSS.This issue affects Ecwid Shopping Cart: from n/a through = 7.0...