cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2015-2673,https://securityvulnerability.io/vulnerability/CVE-2015-2673,,The ec_ajax_update_option and ec_ajax_clear_all_taxrates functions in inc/admin/admin_ajax_functions.php in the WP EasyCart plugin 1.1.30 through 3.0.20 for WordPress allow remote attackers to gain administrator privileges and execute arbitrary code via the option_name and option_value parameters.,Wordpress,WP Easycart,8.8,HIGH,0.01573999971151352,false,,false,false,false,,false,false,2017-10-06T22:00:00.000Z,0
CVE-2014-9308,https://securityvulnerability.io/vulnerability/CVE-2014-9308,,"Unrestricted file upload vulnerability in inc/amfphp/administration/banneruploaderscript.php in the WP EasyCart (aka WordPress Shopping Cart) plugin before 3.0.9 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in products/banners/.",Wordpress,WP Easycart,,,0.8866699934005737,false,,false,false,false,,false,false,2015-01-15T15:00:00.000Z,0
CVE-2014-4942,https://securityvulnerability.io/vulnerability/CVE-2014-4942,,"The EasyCart (wp-easycart) plugin before 2.0.6 for WordPress allows remote attackers to obtain configuration information via a direct request to inc/admin/phpinfo.php, which calls the phpinfo function.",Wordpress,WP-easycart,,,0.01155999954789877,false,,false,false,false,,false,false,2014-07-11T20:55:00.000Z,0