Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
thecartpress thecartpress vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2015-3302
The TheCartPress eCommerce Shopping Cart (aka The Professional WordPress eCommerce Plugin) plugin for WordPress prior to 1.3.9.3 allows remote malicious users to obtain sensitive order detail information by leveraging a "broken authentication mechanism."
Thecartpress Thecartpress Ecommerce Shopping Cart
1 EDB exploit
435
VMScore
CVE-2015-3986
Cross-site request forgery (CSRF) vulnerability in the TheCartPress eCommerce Shopping Cart (aka The Professional WordPress eCommerce Plugin) plugin for WordPress prior to 1.3.9.3 allows remote malicious users to hijack the authentication of administrators for requests that condu...
Thecartpress Thecartpress Ecommerce Shopping Cart
1 EDB exploit
435
VMScore
CVE-2015-3300
Multiple cross-site scripting (XSS) vulnerabilities in the TheCartPress eCommerce Shopping Cart (aka The Professional WordPress eCommerce Plugin) plugin for WordPress prior to 1.3.9.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) billing_firstnam...
Thecartpress Thecartpress Ecommerce Shopping Cart
1 EDB exploit
435
VMScore
CVE-2011-5207
Cross-site scripting (XSS) vulnerability in admin/OptionsPostsList.php in the TheCartPress plugin for WordPress prior to 1.1.6 prior to 2011-12-31 allows remote malicious users to inject arbitrary web script or HTML via the tcp_name_post_XXXXX parameter.
Thecartpress Thecartpress
Thecartpress Thecartpress 1.0
Thecartpress Thecartpress 1.0.1
Thecartpress Thecartpress 1.0.2
Thecartpress Thecartpress 1.0.3
Thecartpress Thecartpress 1.0.4
Thecartpress Thecartpress 1.0.5
Thecartpress Thecartpress 1.0.6
Thecartpress Thecartpress 1.0.7
Thecartpress Thecartpress 1.0.8
Thecartpress Thecartpress 1.0.9
Thecartpress Thecartpress 1.1.0
Thecartpress Thecartpress 1.1.1
Thecartpress Thecartpress 1.1.2
Thecartpress Thecartpress 1.1.3
Thecartpress Thecartpress 1.1.4
Thecartpress Thecartpress 1.1.5
1 EDB exploit
405
VMScore
CVE-2015-3301
Directory traversal vulnerability in the TheCartPress eCommerce Shopping Cart (aka The Professional WordPress eCommerce Plugin) plugin for WordPress prior to 1.3.9.3 allows remote administrators to read arbitrary files via a .. (dot dot) in the tcp_box_path parameter in the check...
Thecartpress Thecartpress Ecommerce Shopping Cart
1 EDB exploit
NA
CVE-2015-33004
WordPress TheCartPress plugin version 1.3.9 suffers from local file inclusion, improper access control, and cross site scripting vulnerabilities.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
malicious code
XML injection
CVE-2024-28020
CVE-2024-35252
CVE-2024-5833
CVE-2024-30066
injection
CVE-2024-23282
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started