XSS Vulnerability in Welcart Plugin for WordPress
CVE-2012-5177

Currently unrated

Key Information:

Vendor: Wordpress
Status: Welcart Plugin
Vendor: CVE Published:; 19 December 2012

Summary

The Welcart plugin for WordPress has a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web scripts or HTML code into affected sites through unspecified vectors. This issue primarily affects versions prior to 1.2.2, posing a serious threat to the security of WordPress installations utilizing this plugin. Webmasters should ensure that they are running the latest version of the Welcart plugin to mitigate this risk.

References

http://jvn.jp/en/jp/JVN18731696/index.html

third-party-advisoryx_refsource_JVN

http://www.welcart.com/community/archives/4524

x_refsource_CONFIRM

http://jvndb.jvn.jp/jvndb/JVNDB-2012-000108

third-party-advisoryx_refsource_JVNDB

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 19, 2012