Wpeasycart - Wp Easycart CVE

Filtered by vendor Wpeasycart Subscribe

Filtered by product Wp Easycart

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2014-9308	1 Wpeasycart	1 Wp Easycart	2015-01-16	6.5 MEDIUM	N/A
Unrestricted file upload vulnerability in inc/amfphp/administration/banneruploaderscript.php in the WP EasyCart (aka WordPress Shopping Cart) plugin before 3.0.9 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in products/banners/.

Vulnerabilities (CVE)