Welcart E-commerce Security Vulnerabilities and Issues — Welcart E-commerce CVE List

Lucene search

WelcartWelcart E-commerce

3 matches found

CVE•added 2024/06/11 4:15 p.m.•51 views

CVE-2024-32144

Missing Authorization vulnerability in Welcart Inc. Welcart e-Commerce.This issue affects Welcart e-Commerce: from n/a through 2.9.14.

5.4CVSS4.9AI score0.00065EPSS

CVE•added 2022/12/12 6:15 p.m.•50 views

CVE-2022-3935

The Welcart e-Commerce WordPress plugin before 2.8.4 does not sanitise and escape some parameters, which could allow any authenticated users, such as subscriber to perform Stored Cross-Site Scripting attacks

5.4CVSS5.1AI score0.001EPSS

CVE•added 2023/01/16 4:15 p.m.•50 views

CVE-2022-4655

The Welcart e-Commerce WordPress plugin before 2.8.9 does not validate and escapes one of its shortcode attributes, which could allow users with a role as low as a contributor to perform a Stored Cross-Site Scripting attack.

5.4CVSS5.3AI score0.00113EPSS