CVE-2015-2673

Exploit

EPSS 63.77%
Veröffentlicht 06.10.2017 22:29:00
Zuletzt bearbeitet 20.04.2025 01:37:25
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

EasyCart 1.1.30 - 3.0.20 - Privilege Escalation

The ec_ajax_update_option and ec_ajax_clear_all_taxrates functions in inc/admin/admin_ajax_functions.php in the WP EasyCart plugin 1.1.30 through 3.0.20 for WordPress allow remote attackers to gain administrator privileges and execute arbitrary code via the option_name and option_value parameters.

Mögliche Gegenmaßnahme

Shopping Cart & eCommerce Store: Update to version 3.0.21, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 5

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Shopping Cart & eCommerce Store

Version 1.1.30 - 3.0.20

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Wpeasycart ≫ Wp Easycart Version1.1.30 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.1.31 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.1.32 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.1.33 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.1.34 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.1.35 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.1.36 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.0 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.1 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.2 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.3 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.4 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.5 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.6 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.7 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.8 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.9 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.10 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.11 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.12 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.13 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.14 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.15 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version1.2.16 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.1 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.2 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.3 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.4 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.5 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.6 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.7 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.8 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.9 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.10 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.11 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.12 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.13 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.14 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.15 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.16 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.17 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.18 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.19 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.20 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.21 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.0.22 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.0 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.1 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.2 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.3 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.4 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.5 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.6 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.7 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.8 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.9 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.10 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.11 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.12 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.13 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.14 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.15 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.16 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.17 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.18 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.19 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.20 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.21 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.22 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.23 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.24 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.25 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.26 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.27 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.28 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.29 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.30 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.31 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.32 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.33 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.34 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.35 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version2.1.36 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.0 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.1 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.2 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.3 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.4 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.5 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.6 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.7 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.8 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.9 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.10 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.11 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.12 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.13 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.14 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.15 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.16 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.17 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.18 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.19 SwPlatformwordpress

Wpeasycart ≫ Wp Easycart Version3.0.20 SwPlatformwordpress

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	63.77%	0.983

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

http://blog.rastating.com/wp-easycart-privilege-escalation-information-disclosure/

Third Party Advisory

Exploit

https://www.wordfence.com/threat-intel/vulnerabilities/id/91c147f9-8179-4ce0-8d17-87ea47cf08fe

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2015-2673

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-2673

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-2673

EUVD