CVE-2023-5953

Summary

The Welcart e-Commerce WordPress plugin before 2.9.5 does not validate files to be uploaded, as well as does not have authorisation and CSRF in an AJAX action handling such upload. As a result, any authenticated users, such as subscriber could upload arbitrary files, such as PHP on the server

Affected Software

VendorProductVersion RangeStatus
UnknownWelcart e-Commerce0 < 2.9.5affected

Weaknesses

  • CWE-434 Unrestricted Upload of File with Dangerous Type
  • CWE-352 Cross-Site Request Forgery (CSRF)

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: total

References