CVE-2015-2673 — HIGH (8.8) — White Hats Nepal

Vulnerability Description

The ec_ajax_update_option and ec_ajax_clear_all_taxrates functions in inc/admin/admin_ajax_functions.php in the WP EasyCart plugin 1.1.30 through 3.0.20 for WordPress allow remote attackers to gain administrator privileges and execute arbitrary code via the option_name and option_value parameters.

CVSS Score

8.8

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Wpeasycart	Wp Easycart	1.1.30

Related Weaknesses (CWE)

CWE-264

References

http://blog.rastating.com/wp-easycart-privilege-escalation-information-disclosurExploitThird Party Advisory
http://blog.rastating.com/wp-easycart-privilege-escalation-information-disclosurExploitThird Party Advisory

FAQ

What is CVE-2015-2673?

CVE-2015-2673 is a vulnerability with a CVSS score of 8.8 (HIGH). The ec_ajax_update_option and ec_ajax_clear_all_taxrates functions in inc/admin/admin_ajax_functions.php in the WP EasyCart plugin 1.1.30 through 3.0.20 for WordPress allow remote attackers to gain ad...

How severe is CVE-2015-2673?

CVE-2015-2673 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-2673?

Check the references section above for vendor advisories and patch information. Affected products include: Wpeasycart Wp Easycart.