3 matches found
EUVD-2015-9394
Malware in sbrugna...
PT-2025-19908 · WordPress · Wpshop 2
Name of the Vulnerable Software and Affected Versions: WPshop 2 – E-Commerce plugin for WordPress versions 2.0.0 through 2.6.0 Description: The issue is related to privilege escalation via account takeover. This occurs because the plugin does not properly validate a user's identity before updatin...
PT-2025-19909 · WordPress · Wpshop 2
Name of the Vulnerable Software and Affected Versions: WPshop 2 – E-Commerce plugin for WordPress versions 2.0.0 through 2.6.0 Description: The issue allows authenticated attackers with Subscriber-level access and above to create valid API keys on behalf of other users due to missing validation o...