Vulnerabilities > CVE-2023-1124 - Unspecified vulnerability in Wpeasycart WP Easycart

047910
CVSS 7.2 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
wpeasycart
NVD
Published: 2023-04-03
Updated: 2023-11-07

Summary

The Shopping Cart & eCommerce Store WordPress plugin before 5.4.3 does not validate HTTP requests, allowing authenticated users with admin privileges to perform LFI attacks.

Vulnerable Configurations

Part Description Count
Application
Wpeasycart
286

References