Unauth. Directory Traversal vulnerability in Welcart eCommerce plugin <= 2.7.7 on WordPress.
References
Configurations
History
21 Nov 2022, 17:06
Type | Values Removed | Values Added |
---|---|---|
First Time |
Collne welcart E-commerce
Collne |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CPE | cpe:2.3:a:collne:welcart_e-commerce:*:*:*:*:*:wordpress:*:* | |
References | (CONFIRM) https://patchstack.com/database/vulnerability/usc-e-shop/wordpress-welcart-e-commerce-plugin-2-7-7-unauth-directory-traversal-vulnerability?_s_id=cve - Third Party Advisory | |
CWE | CWE-22 |
18 Nov 2022, 19:36
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-18 19:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-41840
Mitre link : CVE-2022-41840
CVE.ORG link : CVE-2022-41840
JSON object : View
Products Affected
collne
- welcart_e-commerce
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')