The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress mishandles sessions, which allows remote attackers to obtain access by leveraging knowledge of the e-mail address associated with an account.
CPE | Name | Operator | Version |
---|---|---|---|
welcart_e-commerce | lt | 1.8.3 |