• WordPress Plugin WP e-Commerce-Store Toolkit is prone to a privilege escalation vulnerability. Exploiting this issue may allow attackers to bypass the expected capabilities check and perform otherwise restricted actions; other attacks are also possible. WordPress Plugin WP e-Commerce-Store Toolkit version 2.0.1 is vulnerable; prior versions may also be affected.

• Update to plugin version 2.0.2 or latest

• • http://www.pritect.net/blog/visser-labs-wordpress-plugins-multiple-vulnerabilities
  • https://wordpress.org/plugins/wp-e-commerce-store-toolkit/changelog/

• 

• CWE-264

• Missing Update Privilege Escalation

• WordPress Plugin WP No External Links Spam Injection (4.2.2)
• WordPress Plugin SG Optimizer Unspecified Vulnerability (5.0.12)
• WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.17)
• WordPress Plugin Events Made Easy Arbitrary File Upload (2.1.1)
• WordPress Plugin Gallery-Photo Albums-Portfolio Multiple Cross-Site Scripting Vulnerabilities (1.2.29)