Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:177ACB3E-B7A2-4A86-9808-4B90D1DBE146
HistoryNov 05, 2020 - 12:00 a.m.

Welcart e-Commerce < 1.9.36 - Authenticated PHP Object Injection

2020-11-0500:00:00
wpscan.com
14

0.001 Low

EPSS

Percentile

40.7%

JSON

The plugin unserialises (via usces_unserialize()) the content of the usces_cookie cookie, which could lead to a PHP Object Injection issue.

CPENameOperatorVersion
usc-e-shoplt1.9.36

Related

prion 1
patchstack 1
cvelist 1
nvd 1
cve 1
prion
prion
Design/Logic Flaw
2020-11-07 19:15:00
patchstack
patchstack
WordPress Welcart e-Commerce plugin <= 1.9.35 - Authenticated PHP Object Injection vulnerability
2020-11-05 00:00:00
cvelist
cvelist
CVE-2020-28339
2020-11-07 18:16:33
nvd
nvd
CVE-2020-28339
2020-11-07 19:15:12
cve
cve
CVE-2020-28339
2020-11-07 19:15:12

0.001 Low

EPSS

Percentile

40.7%

JSON
Related for WPVDB-ID:177ACB3E-B7A2-4A86-9808-4B90D1DBE146
prion1patchstack1cvelist1nvd1cve1