Lightspeedhq Ecwid_ecommerce_shopping_cart

6 CVEs affecting Lightspeedhq Ecwid_ecommerce_shopping_cart. Latest disclosed: 2025-02-18. Critical: 0, High: 1.

Top CVEs affecting Lightspeedhq Ecwid_ecommerce_shopping_cart
CVESeverityScorePublishedSummary
CVE-2022-2432High8.82022-09-06The Ecwid Ecommerce Shopping Cart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 6.10.23. This is due to mi…
CVE-2023-24408Medium6.52023-05-08Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Ecwid Ecommerce Ecwid Ecommerce Shopping Cart plugin <= 6.11.4 versions.
CVE-2023-51533Medium5.42024-02-28Cross-Site Request Forgery (CSRF) vulnerability in Ecwid Ecommerce Ecwid Ecommerce Shopping Cart.This issue affects Ecwid Ecommerce Shopping Cart: from n/a thr…
CVE-2023-24377Medium5.42023-02-14Cross-Site Request Forgery (CSRF) vulnerability in Ecwid Ecommerce Ecwid Ecommerce Shopping Cart plugin <= 6.11.3 versions.
CVE-2024-13795Medium4.32025-02-18The Ecwid by Lightspeed Ecommerce Shopping Cart plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.12.27…
CVE-2023-6292Medium4.32024-01-16The Ecwid Ecommerce Shopping Cart WordPress plugin before 6.12.5 does not have CSRF check in place when updating its settings, which could allow attackers to m…