Levelfourstorefront Shopping Cart & Ecommerce Store

11 CVEs affecting Levelfourstorefront Shopping Cart & Ecommerce Store. Latest disclosed: 2025-01-08. Critical: 0, High: 3.

Top CVEs affecting Levelfourstorefront Shopping Cart & Ecommerce Store
CVESeverityScorePublishedSummary
CVE-2024-7827High8.82024-08-20The Shopping Cart & eCommerce Store plugin for WordPress is vulnerable to boolean-based SQL Injection via the ‘model_number’ parameter in all versions up to, a…
CVE-2024-3211High8.82024-04-12The Shopping Cart & eCommerce Store plugin for WordPress is vulnerable to SQL Injection via the 'productid' attribute of the ec_addtocart shortcode in all vers…
CVE-2023-3023High7.22023-07-12The WP EasyCart plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in versions up to, and including, 5.4.10 due to insu…
CVE-2023-2892Medium6.52023-06-09The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to missing or incorrect n…
CVE-2023-2891Medium6.52023-06-09The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to missing or incorrect n…
CVE-2024-12712Medium5.32025-01-08The Shopping Cart & eCommerce Store plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the webhook fu…
CVE-2024-4213Medium5.32024-05-14The Shopping Cart & eCommerce Store plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.6.4 via the or…
CVE-2023-2896Medium4.32023-06-09The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to missing or incorrect n…
CVE-2023-2895Medium4.32023-06-09The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to missing or incorrect n…
CVE-2023-2894Medium4.32023-06-09The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to missing or incorrect n…
CVE-2023-2893Medium4.32023-06-09The WP EasyCart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.4.8. This is due to missing or incorrect n…