Vulnerability Description
The Welcart e-Commerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.9.6 via the upload_certificate_file function. This makes it possible for administrators to upload .pem or .crt files to arbitrary locations on the server.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Welcart | Welcart E-Commerce | < 2.9.7 |
Related Weaknesses (CWE)
References
- https://plugins.trac.wordpress.org/changeset/2992785/usc-e-shop/trunk/classes/paProduct
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&newProduct
- https://www.wordfence.com/threat-intel/vulnerabilities/id/2677cea6-d60d-4e10-afdThird Party Advisory
- https://plugins.trac.wordpress.org/changeset/2992785/usc-e-shop/trunk/classes/paProduct
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&newProduct
- https://www.wordfence.com/threat-intel/vulnerabilities/id/2677cea6-d60d-4e10-afdThird Party Advisory
FAQ
What is CVE-2023-6120?
CVE-2023-6120 is a vulnerability with a CVSS score of 4.1 (MEDIUM). The Welcart e-Commerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.9.6 via the upload_certificate_file function. This makes it possible for admini...
How severe is CVE-2023-6120?
CVE-2023-6120 has been rated MEDIUM with a CVSS base score of 4.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-6120?
Check the references section above for vendor advisories and patch information. Affected products include: Welcart Welcart E-Commerce.