Description

WordPress Plugin ShareYourCart is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin ShareYourCart version 1.6.1 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.7.1 or latest

References

http://secunia.com/advisories/48960/

http://www.securityfocus.com/bid/53241/

Related Vulnerabilities

WordPress Plugin WP Infusionsoft WooCommerce Cross-Site Scripting (1.0.8)

WordPress Plugin HMS Testimonials Multiple Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities (2.0.10)

WordPress Plugin Faster and Easier scroll to Top for WordPress-Smart Scroll to Top Lite includes Backdoor [Only if downloaded via the vendor website] (1.0.3)

WordPress Plugin SpiderCatalog Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.4.6)

WordPress Plugin Visitors Online by BestWebSoft Cross-Site Scripting (0.9)

Severity

High

Classification

CVE-2012-4332 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Information Disclosure