ThreatPress

WordPress Vulnerabilities Database

Back

WordPress TheCartPress Plugin 1.3.9 - Multiple Vulnerabilities

Product
TheCartPress
Description
TheCartPress plugin is prone to multiple vulnerabilities, such as local PHP file inclusion, stored XSS, improper access control and multiple XSS vulnerabilities.
Solution
Update the plugin.
Classification
Type Multi
References
Exploit-DB
CVE
Name CVE-2015-3300
Versions
Affected In <= 1.3.9
Fixed In 1.4.0
Disclosure date
2015-04-29
Credits
High-Tech Bridge SA