ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Collne Welcart e-Commerce Plugin <= 1.8.2 - Session Hijacking

Product
Collne Welcart e-Commerce
Description
The Collne Welcart e-Commerce plugin allows an attacker to obtain access by leveraging knowledge of the e-mail address associated with an account.
Solution
Update the plugin.
Classification
Type Session Hijacking
References
CVE Mitre
CVE
Name CVE-2016-4828
Versions
Affected In <= 1.8.2
Fixed In 1.8.3
Disclosure date
2016-05-17