CVE-2016-4825

The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via crafted serialized data.

CVSS v3 5.6 MEDIUM
CVSS v2.0 6.8 MEDIUM

5.6^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.2 / Impact : 3.4

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://jvn.jp/en/jp/JVN47363774/index.html	Vendor Advisory
http://jvndb.jvn.jp/jvndb/JVNDB-2016-000115	Third Party Advisory VDB Entry Vendor Advisory
http://www.welcart.com/community/archives/78977	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:collne:welcart_e-commerce:*:*:*:*:*:wordpress:*:*

History

31 Aug 2021, 20:05

Type	Values Removed	Values Added
References	~~(JVNDB) http://jvndb.jvn.jp/jvndb/JVNDB-2016-000115 - Vendor Advisory~~	(JVNDB) http://jvndb.jvn.jp/jvndb/JVNDB-2016-000115 - Third Party Advisory, VDB Entry, Vendor Advisory
CPE	cpe:2.3:a:welcart:e-commerce::::::wordpress::*	cpe:2.3:a:collne:welcart_e-commerce::::::wordpress::*

Information

Published : 2016-06-25 21:59

Updated : 2023-12-10 11:46

NVD link : CVE-2016-4825

Mitre link : CVE-2016-4825

CVE.ORG link : CVE-2016-4825

JSON object : View

Products Affected

collne

welcart_e-commerce

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2016-4825", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.6, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 3.4, "exploitabilityScore": 2.2}]}, "published": "2016-06-25T21:59:07.767", "references": [{"url": "http://jvn.jp/en/jp/JVN47363774/index.html", "tags": ["Vendor Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000115", "tags": ["Third Party Advisory", "VDB Entry", "Vendor Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "http://www.welcart.com/community/archives/78977", "tags": ["Vendor Advisory"], "source": "vultures@jpcert.or.jp"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via crafted serialized data."}, {"lang": "es", "value": "El plugin Collne Welcart e-Commerce en versiones anteriores a 1.8.3 para WordPress permite a atacantes remotos llevar a cabo ataques de inyecci\u00f3n de objetos PHP y ejecutar c\u00f3digo PHP arbitrario a trav\u00e9s de datos serializados manipulados."}], "lastModified": "2021-08-31T20:05:08.127", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:collne:welcart_e-commerce:*:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "68FA643C-E0F0-4279-B105-72ADE0313B48", "versionEndExcluding": "1.8.3"}], "operator": "OR"}]}], "sourceIdentifier": "vultures@jpcert.or.jp"}