| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-3890 | WordPress Simple PayPal Shopping Cart <= 5.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | mra13 | Simple Shopping Cart | Medium | 6.4 | 2025-05-01 11:11:42 | Deep Dive |
| CVE-2025-3530 | WordPress Simple PayPal Shopping Cart <= 5.1.2 - Unauthenticated Product Price Manipulation | mra13 | Simple Shopping Cart | High | 7.5 | 2025-04-23 07:06:50 | Deep Dive |
| CVE-2025-3529 | WordPress Simple PayPal Shopping Cart <= 5.1.2 - Unauthenticated Information Exposure via file_url Parameter | mra13 | Simple Shopping Cart | High | 8.2 | 2025-04-23 07:06:49 | Deep Dive |
| CVE-2025-32195 | WordPress Ecwid Shopping Cart plugin <= 7.0 - Cross Site Scripting (XSS) vulnerability | Ecwid by Lightspeed Ecommerce Shopping Cart | Ecwid Shopping Cart | Medium | 6.5 | 2025-04-04 15:59:07 | Deep Dive |
| CVE-2024-13795 | Ecwid by Lightspeed Ecommerce Shopping Cart <= 6.12.27 - Cross-Site Request Forgery to Send Deactivation Message | ecwid | Ecwid by Lightspeed Ecommerce Shopping Cart | Medium | 4.3 | 2025-02-18 07:28:14 | Deep Dive |
| CVE-2024-12712 | Shopping Cart & eCommerce Store <= 5.7.8 - Missing Authorization to Order Updates | levelfourstorefront | Shopping Cart & eCommerce Store | Medium | 5.3 | 2025-01-08 09:18:36 | Deep Dive |
| CVE-2024-12622 | WordPress Simple Shopping Cart <= 5.0.7 - Authenticated (Contributor+) Stored Cross-Site Scripting | mra13 | Simple Shopping Cart | Medium | 6.4 | 2024-12-24 05:23:44 | Deep Dive |
| CVE-2024-12128 | Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal <= 3.1.2 - Reflected Cross-Site Scripting via monthly_sales_current_year Parameter | nshowketgmailcom | Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal | Medium | 6.1 | 2024-12-07 09:27:06 | Deep Dive |
| CVE-2024-12253 | Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal <= 3.1.2 - Missing Authorization to Authenticated (Subscriber+) Settings Update / Data Access | nshowketgmailcom | Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal | Medium | 5.4 | 2024-12-07 09:26:01 | Deep Dive |
| CVE-2024-53714 | WordPress Continue Shopping From Cart plugin <= 1.3 - CSRF to Stored XSS vulnerability | Irish_Cathal | Continue Shopping From Cart | High | 7.1 | 2024-12-02 13:48:47 | Deep Dive |
| CVE-2024-7827 | Shopping Cart & eCommerce Store <= 5.7.2 - Authenticated (Contributor+) SQL Injection via model_number Parameter | levelfourstorefront | Shopping Cart & eCommerce Store | High | 8.8 | 2024-08-20 02:03:18 | Deep Dive |
| CVE-2024-4826 | SQL injection vulnerability in Simple PHP Shopping Cart | Asaancart | Simple PHP Shopping Cart | Critical | 9.8 | 2024-05-16 12:07:02 | Deep Dive |
| CVE-2024-4213 | Shopping Cart & eCommerce Store <= 5.6.4 - Sensitive Information Exposure | levelfourstorefront | Shopping Cart & eCommerce Store | Medium | 5.3 | 2024-05-10 21:32:42 | Deep Dive |
| CVE-2024-3211 | Shopping Cart & eCommerce Store <= 5.6.3 - Authenticated (Contributor+) SQL Injection | levelfourstorefront | Shopping Cart & eCommerce Store | High | 8.8 | 2024-04-12 09:30:15 | Deep Dive |
| CVE-2024-2456 | Ecwid Ecommerce Shopping Cart <= 6.12.10 - Authenticated(Contributor+) Stored Cross-Site Scripting via Shortcode | ecwid | Ecwid by Lightspeed Ecommerce Shopping Cart | Medium | 6.4 | 2024-04-09 18:59:28 | Deep Dive |
| CVE-2024-2133 | Bdtask Isshue Multi Store eCommerce Shopping Cart Solution Manage Sale Page manage_invoice cross site scripting | Bdtask | Isshue Multi Store eCommerce Shopping Cart Solution | Low | 2.4 | 2024-03-02 23:31:04 | Deep Dive |
| CVE-2023-51533 | WordPress Ecwid Shopping Cart Plugin <= 6.12.4 is vulnerable to Cross Site Request Forgery (CSRF) | Ecwid Ecommerce | Ecwid Ecommerce Shopping Cart | Medium | 5.4 | 2024-02-28 18:38:06 | Deep Dive |
| CVE-2023-6497 | WordPress Simple Shopping Cart <= 4.7.1 - Authenticated(Administrator+) Stored Cross-Site Scripting | mra13 | Simple Shopping Cart | Medium | 4.4 | 2024-01-27 03:32:46 | Deep Dive |
| CVE-2023-6292 | Ecwid Ecommerce Shopping Cart < 6.12.5 - Arbitrary Plugin Settings Change via CSRF | Unknown | Ecwid Ecommerce Shopping Cart | 中危 | - | 2024-01-16 15:57:35 | Deep Dive |
| CVE-2023-47239 | WordPress Easy PayPal Shopping Cart Plugin <= 1.1.10 is vulnerable to Cross Site Scripting (XSS) | Scott Paterson | Easy PayPal Shopping Cart | Medium | 6.5 | 2023-11-16 18:58:14 | Deep Dive |