Vulnerabilities (CVE)

Filtered by vendor Welcart Subscribe
Filtered by product Welcart Plugin
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-5178 2 Welcart, Wordpress 2 Welcart Plugin, Wordpress 2024-11-21 6.8 MEDIUM N/A
Cross-site request forgery (CSRF) vulnerability in the Welcart plugin before 1.2.2 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that complete a purchase.
CVE-2012-5177 2 Welcart, Wordpress 2 Welcart Plugin, Wordpress 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the Welcart plugin before 1.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.