CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Instinct: >> E-Commerce Plugin Security Vulnerabilities

CVE-2008-6811

Unrestricted file upload vulnerability in image_processing.php in the e-Commerce Plugin 3.4 and earlier for Wordpress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in wp-content/plugins/wp-shopping-cart/.

CVSS Score

6.8

EPSS Score

0.027

Published

2009-05-18

Page 1

Vulnerabilities

Vulnerable Software

Instinct: >> E-Commerce Plugin Security Vulnerabilities

Products

Pricing

Contact Us