Description

WordPress Plugin WP eCommerce is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin WP eCommerce version 3.9.3 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 3.9.4 or latest

References

https://wordpress.org/plugins/wp-e-commerce/changelog/

Related Vulnerabilities

Drupal Core 9.2.x Directory Traversal (9.2.0 - 9.2.1)

WordPress Plugin Clean Login Unspecified Vulnerability (1.8)

WordPress Plugin Floating Social Bar Cross-Site Scripting (1.1.5)

Atlassian Jira Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-39118)

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1407)

Severity

High

Tags

Missing Update