CVE-2015-3421

6.1MEDIUM

Key Information:

Vendor: Wordpress
Status: Eshop
Vendor: CVE Published:; 21 July 2017

Summary

The eshop_checkout function in checkout.php in the Wordpress Eshop plugin 6.3.11 and earlier does not validate variables in the "eshopcart" HTTP cookie, which allows remote attackers to perform cross-site scripting (XSS) attacks, or a path disclosure attack via crafted variables named after target PHP variables.

References

https://www.htbridge.com/advisory/HTB23255

x_refsource_MISC

http://www.securityfocus.com/bid/74477

vdb-entryx_refsource_BID

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Jul 21, 2017
Vulnerability Reserved
Apr 27, 2015