Ecwid Ecwid By Lightspeed Ecommerce Shopping Cart
3 CVEs affecting Ecwid Ecwid By Lightspeed Ecommerce Shopping Cart. Latest disclosed: 2026-02-15. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-1750 | High | 8.8 | 2026-02-15 | The Ecwid by Lightspeed Ecommerce Shopping Cart plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 7.0.7. This is… |
CVE-2024-2456 | Medium | 6.4 | 2024-04-09 | The Ecwid Ecommerce Shopping Cart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up to, and in… |
CVE-2024-13795 | Medium | 4.3 | 2025-02-18 | The Ecwid by Lightspeed Ecommerce Shopping Cart plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.12.27… |