1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Flaws in WordPress eCommerce Plugin Expose Over 5,000 Websites

Discussion in 'SecurityWeek' started by RSS, Apr 30, 2015.

  1. RSS

    RSS New Member Member

    Researchers at High-Tech Bridge have identified several vulnerabilities in TheCartPress, an eCommerce plugin installed on more than 5,000 WordPress websites.

    According to experts, the plugin is plagued by security holes that can be exploited for cross-site scripting (XSS) attacks, arbitrary PHP code execution, and sensitive data disclosure.

    read more

    [​IMG]
    [​IMG] [​IMG] [​IMG] [​IMG] [​IMG] [​IMG] [​IMG] [​IMG]

    Continue reading...
     

Share This Page