WordPress Plugin Vulnerabilities
Welcart e-Commerce < 1.9.36 - Authenticated PHP Object Injection
Description
The plugin unserialises (via usces_unserialize()) the content of the usces_cookie cookie, which could lead to a PHP Object Injection issue.
Affects Plugins
Fixed in version 1.9.36
References
Classification
Miscellaneous
Timeline
Publicly Published
2020-11-05 (about 2 years ago)
Added
2020-11-05 (about 2 years ago)
Last Updated
2020-11-09 (about 2 years ago)