Filter
-Infinity
0

Trending

Last week
Last month
Last year

Welcart PluginWelcart e-Commerce 2.11.6 and earlier versions contains an untrusted data deserialization vulnerabil…

medium
6.3
First published (updated )
CVE-2025-27130

Welcart PluginWelcart e-Commerce <= 2.11.9 - Unauthenticated Stored Cross-Site Scripting via name Parameter

high
7.2
First published (updated )
CVE-2025-0511

Welcart PluginXSS

medium
6.1
First published (updated )
CVE-2024-45366

Welcart PluginSQL Injection

high
8.8
First published (updated )
CVE-2024-42404

Welcart PluginWordPress Welcart e-Commerce plugin <= 2.9.14 - Broken Access Control vulnerability

medium
5.4
First published (updated )
CVE-2024-32144

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Welcart PluginWordPress Welcart e-Commerce Plugin <= 2.9.3 is vulnerable to SQL Injection

high
7.6
First published (updated )
CVE-2023-50847

Welcart PluginPath Traversal

medium
4.1
EPSS
0.05%
First published (updated )
CVE-2023-6120

Welcart PluginWelcart e-Commerce < 2.9.5 - Reflected XSS

medium
6.1
EPSS
0.05%
First published (updated )
CVE-2023-5951

Welcart PluginWelcart e-Commerce < 2.9.5 - Subscriber+ Arbitrary File Upload

high
8.8
EPSS
0.05%
First published (updated )
CVE-2023-5953

Welcart PluginWelcart e-Commerce < 2.9.5 - Unauthenticated PHP Object Injection

critical
9.8
EPSS
0.11%
First published (updated )
CVE-2023-5952

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Collne WelcartXSS

medium
6.1
First published (updated )
CVE-2023-43614

Collne WelcartSQL Injection

high
8.8
First published (updated )
CVE-2023-43610

Collne WelcartSQL Injection

medium
4.9
First published (updated )
CVE-2023-43493

Collne WelcartXSS

medium
6.1
First published (updated )
CVE-2023-43484

Collne WelcartXSS

medium
6.1
First published (updated )
CVE-2023-41962

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Collne WelcartXSS

medium
6.1
First published (updated )
CVE-2023-41233

Collne WelcartMalicious File Upload

high
7.2
First published (updated )
CVE-2023-40219

Collne WelcartThe Welcart e-Commerce plugin for WordPress is vulnerable to authorization bypass due to a missing c…

medium
4.3
First published (updated )
CVE-2021-4375

Collne WelcartThe Welcart e-Commerce plugin for WordPress is vulnerable to authorization bypass due to missing cap…

high
7.5
First published (updated )
CVE-2021-4355

Collne WelcartWordPress Welcart e-Commerce Plugin <= 2.8.10 is vulnerable to Cross Site Scripting (XSS)

high
7.1
First published (updated )
CVE-2023-22705

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Collne WelcartWelcart e-Commerce < 2.8.6 - Subscriber+ PHAR Deserialisation

high
8.8
First published (updated )
CVE-2022-4237

Collne WelcartWelcart e-Commerce < 2.8.5 - Subscriber+ Arbitrary File Access

medium
6.5
First published (updated )
CVE-2022-4236

Collne WelcartWelcart e-Commerce < 2.8.5 - Unauthenticated Arbitrary File Access

high
7.5
First published (updated )
CVE-2022-4140

Collne WelcartWordPress Welcart eCommerce plugin <= 2.7.7 - Unauth. Directory Traversal vulnerability

critical
9.8
First published (updated )
CVE-2022-41840

Collne WelcartXSS

medium
6.1
First published (updated )
CVE-2021-20734

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Collne WelcartThe usc-e-shop (aka Collne Welcart e-Commerce) plugin before 1.9.36 for WordPress allows Object Inje…

high
8.8
First published (updated )
CVE-2020-28339

Collne WelcartXSS

medium
6.1
First published (updated )
CVE-2016-4826

Collne WelcartXSS

medium
6.1
First published (updated )
CVE-2016-4827

Collne WelcartThe Collne Welcart e-Commerce plugin before 1.8.3 for WordPress mishandles sessions, which allows re…

medium
6.5
First published (updated )
CVE-2016-4828

Collne WelcartInput Validation

medium
6.8
First published (updated )
CVE-2016-4825

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203