The Shopping Cart & eCommerce Store WordPress plugin before 5.4.3 does not validate HTTP requests, allowing authenticated users with admin privileges to perform LFI attacks.
References
Link | Resource |
---|---|
https://wpscan.com/vulnerability/229b93cd-544b-4877-8d9f-e6debda9511c | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2023-04-03T14:38:26.671Z
Updated: 2023-04-03T14:38:26.671Z
Reserved: 2023-03-01T15:20:23.290Z
Link: CVE-2023-1124
JSON object: View
NVD Information
Status : Modified
Published: 2023-04-03T15:15:18.970
Modified: 2023-11-07T04:02:33.200
Link: CVE-2023-1124
JSON object: View
Redhat Information
No data.
CWE