Wpeasycart - Wp Easycart CVE

Filtered by vendor Wpeasycart Subscribe

Filtered by product Wp Easycart

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2015-2673	1 Wpeasycart	1 Wp Easycart	2017-11-01	6.5 MEDIUM	8.8 HIGH
The ec_ajax_update_option and ec_ajax_clear_all_taxrates functions in inc/admin/admin_ajax_functions.php in the WP EasyCart plugin 1.1.30 through 3.0.20 for WordPress allow remote attackers to gain administrator privileges and execute arbitrary code via the option_name and option_value parameters.

Vulnerabilities (CVE)