cbcvebase.

Welcart E-Commerce vulnerabilities

36 known vulnerabilities affecting welcart/welcart_e-commerce.

Total CVEs
36
CISA KEV
0
Public exploits
2
Exploited in wild
1
Severity breakdown
CRITICAL2HIGH9MEDIUM24LOW1

Vulnerabilities

Page 1 of 2
CVE-2022-41840P1CRITICALCVSS 9.8ExploitedPoCfixed in 2.7.82022-11-18
CVE-2022-41840 [CRITICAL] CWE-22 CVE-2022-41840: Unauth. Directory Traversal vulnerability in Welcart eCommerce plugin <= 2.7.7 on WordPress. Unauth. Directory Traversal vulnerability in Welcart eCommerce plugin <= 2.7.7 on WordPress.
nvd
CVE-2022-4140P2HIGHCVSS 7.5PoCfixed in 2.8.52023-01-02
CVE-2022-4140 [HIGH] CWE-552 CVE-2022-4140: The Welcart e-Commerce WordPress plugin before 2.8.5 does not validate user input before using it to The Welcart e-Commerce WordPress plugin before 2.8.5 does not validate user input before using it to output the content of a file, which could allow unauthenticated attacker to read arbitrary files on the server
nvd
CVE-2025-27130P3HIGHCVSS 8.8≤ 2.11.62025-04-01
CVE-2025-27130 [HIGH] CWE-502 CVE-2025-27130: Welcart e-Commerce 2.11.6 and earlier versions contains an untrusted data deserialization vulnerabil Welcart e-Commerce 2.11.6 and earlier versions contains an untrusted data deserialization vulnerability. If this vulnerability is exploited, arbitrary code may be executed by a remote unauthenticated attacker who can access websites created using the product.
nvd
CVE-2023-5953P3HIGHCVSS 8.8fixed in 2.9.52023-12-04
CVE-2023-5953 [HIGH] CWE-434 CVE-2023-5953: The Welcart e-Commerce WordPress plugin before 2.9.5 does not validate files to be uploaded, as well The Welcart e-Commerce WordPress plugin before 2.9.5 does not validate files to be uploaded, as well as does not have authorisation and CSRF in an AJAX action handling such upload. As a result, any authenticated users, such as subscriber could upload arbitrary files, such as PHP on the server
nvd
CVE-2024-42404P3HIGHCVSS 8.8fixed in 2.11.22024-09-18
CVE-2024-42404 [HIGH] CWE-89 CVE-2024-42404: SQL injection vulnerability in Welcart e-Commerce prior to 2.11.2 allows an attacker who can login t SQL injection vulnerability in Welcart e-Commerce prior to 2.11.2 allows an attacker who can login to the product to obtain or alter the information stored in the database.
nvd
CVE-2023-5952P3CRITICALCVSS 9.8fixed in 2.9.52023-12-04
CVE-2023-5952 [CRITICAL] CWE-502 CVE-2023-5952: The Welcart e-Commerce WordPress plugin before 2.9.5 unserializes user input from cookies, which cou The Welcart e-Commerce WordPress plugin before 2.9.5 unserializes user input from cookies, which could allow unautehtniacted users to perform PHP Object Injection when a suitable gadget is present on the blog
nvd
CVE-2023-43610P3HIGHCVSS 8.8≥ 2.7, ≤ 2.8.212023-09-27
CVE-2023-43610 [HIGH] CWE-89 CVE-2023-43610: SQL injection vulnerability in Order Data Edit page of Welcart e-Commerce versions 2.7 to 2.8.21 all SQL injection vulnerability in Order Data Edit page of Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with editor (without setting authority) or higher privilege to perform unintended database operations.
nvd
CVE-2020-28339P3HIGHCVSS 8.8fixed in 1.9.362020-11-07
CVE-2020-28339 [HIGH] CWE-502 CVE-2020-28339: The usc-e-shop (aka Collne Welcart e-Commerce) plugin before 1.9.36 for WordPress allows Object Inje The usc-e-shop (aka Collne Welcart e-Commerce) plugin before 1.9.36 for WordPress allows Object Injection because of usces_unserialize. There is not a complete POP chain.
nvd
CVE-2022-4237P3HIGHCVSS 8.8fixed in 2.8.62023-01-02
CVE-2022-4237 [HIGH] CWE-502 CVE-2022-4237: The Welcart e-Commerce WordPress plugin before 2.8.6 does not validate user input before using it in The Welcart e-Commerce WordPress plugin before 2.8.6 does not validate user input before using it in file_exist() functions via various AJAX actions available to any authenticated users, which could allow users with a role as low as subscriber to perform PHAR deserialisation when they can upload a file and a suitable gadget chain is present on the blog
nvd
CVE-2023-40219P3HIGHCVSS 7.2≥ 2.7, ≤ 2.8.212023-09-27
CVE-2023-40219 [HIGH] CWE-434 CVE-2023-40219: Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with editor or higher privilege to upload an Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with editor or higher privilege to upload an arbitrary file to an unauthorized directory.
nvd
CVE-2023-50847P3HIGHCVSS 7.2≤ 2.9.32023-12-28
CVE-2023-50847 [HIGH] CWE-89 CVE-2023-50847: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Collne Inc. Welcart e-Commerce.This issue affects Welcart e-Commerce: from n/a through 2.9.3.
nvd
CVE-2015-7791P3MEDIUMCVSS 6.3≤ 1.5.22015-12-29
CVE-2015-7791 [MEDIUM] CWE-89 CVE-2015-7791: Multiple SQL injection vulnerabilities in admin.php in the Collne Welcart plugin before 1.5.3 for Wo Multiple SQL injection vulnerabilities in admin.php in the Collne Welcart plugin before 1.5.3 for WordPress allow remote authenticated users to execute arbitrary SQL commands via the (1) search[column] or (2) switch parameter.
nvd
CVE-2016-4825P3MEDIUMCVSS 5.6fixed in 1.8.32016-06-25
CVE-2016-4825 [MEDIUM] CWE-20 CVE-2016-4825: The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to conduct P The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via crafted serialized data.
nvd
CVE-2022-4236P3MEDIUMCVSS 6.5fixed in 2.8.52023-01-02
CVE-2022-4236 [MEDIUM] CWE-552 CVE-2022-4236: The Welcart e-Commerce WordPress plugin before 2.8.5 does not validate user input before using it to The Welcart e-Commerce WordPress plugin before 2.8.5 does not validate user input before using it to output the content of a file via an AJAX action available to any authenticated users, which could allow users with a role as low as subscriber to read arbitrary files on the server.
nvd
CVE-2025-47511P3MEDIUMCVSS 6.5fixed in 2.11.142025-06-09
CVE-2025-47511 [MEDIUM] CWE-22 CVE-2025-47511: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in info Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in info@welcart Welcart e-Commerce usc-e-shop allows Path Traversal.This issue affects Welcart e-Commerce: from n/a through <= 2.11.13.
nvd
CVE-2016-4828P3MEDIUMCVSS 6.5fixed in 1.8.32016-06-25
CVE-2016-4828 [MEDIUM] CWE-19 CVE-2016-4828: The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress mishandles sessions, which allows re The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress mishandles sessions, which allows remote attackers to obtain access by leveraging knowledge of the e-mail address associated with an account.
nvd
CVE-2022-3946P4MEDIUMCVSS 6.5fixed in 2.8.42022-12-12
CVE-2022-3946 [MEDIUM] CWE-352 CVE-2022-3946: The Welcart e-Commerce WordPress plugin before 2.8.4 does not have authorisation and CSRF in an AJAX The Welcart e-Commerce WordPress plugin before 2.8.4 does not have authorisation and CSRF in an AJAX action, allowing any logged-in user to create, update and delete shipping methods.
nvd
CVE-2021-4355P4MEDIUMCVSS 5.3≤ 2.2.72023-06-07
CVE-2021-4355 [MEDIUM] CWE-862 CVE-2021-4355: The Welcart e-Commerce plugin for WordPress is vulnerable to authorization bypass due to missing cap The Welcart e-Commerce plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the download_orderdetail_list(), change_orderlist(), and download_member_list() functions called via admin_init hooks in versions up to, and including, 2.2.7. This makes it possible for unauthenticated attackers to download lists of me
nvd
CVE-2023-43493P4MEDIUMCVSS 4.9≥ 2.7, ≤ 2.8.212023-09-27
CVE-2023-43493 [MEDIUM] CWE-89 CVE-2023-43493: SQL injection vulnerability in Item List page of Welcart e-Commerce versions 2.7 to 2.8.21 allows a SQL injection vulnerability in Item List page of Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with author or higher privilege to obtain sensitive information.
nvd
CVE-2023-43484P4MEDIUMCVSS 6.1≥ 2.7, ≤ 2.8.212023-09-27
CVE-2023-43484 [MEDIUM] CWE-79 CVE-2023-43484: Cross-site scripting vulnerability in Item List page of Welcart e-Commerce versions 2.7 to 2.8.21 al Cross-site scripting vulnerability in Item List page of Welcart e-Commerce versions 2.7 to 2.8.21 allows a remote unauthenticated attacker to inject an arbitrary script.
nvd
Welcart E-Commerce vulnerabilities | cvebase