Search criteria
3 vulnerabilities found for wpstorecart by jquindlen
FKIE_CVE-2012-3576
Vulnerability from fkie_nvd - Published: 2012-06-16 00:55 - Updated: 2025-04-11 00:51
Severity ?
Summary
Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/wpstorecart.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5A3643C0-A3BF-4DCE-9F95-F1F2D84CBA7E",
"versionEndIncluding": "2.5.29",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:0.62:*:*:*:*:*:*:*",
"matchCriteriaId": "81BA73D2-2D82-46DF-BA65-A1BFAB152C07",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:1.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "0D3F2B05-AEA7-478F-A51A-4A7A1F5BC960",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "495E713D-D44F-42A2-BC53-C3DE0BE0BD1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "864E5188-867D-46EF-A110-F84BAB4056C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "D10E4441-007A-4DF1-BCEE-3ABCE53A4EC3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "D8E96F39-3999-44C7-8042-30427548CBDA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "70A8C5A5-BDF5-4F3A-B6B6-4D76196F8AD1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "1E1DD1CD-887F-4A58-8A42-0288360A1045",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "D6D2F8BE-4D72-4391-9E88-CB3028714716",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "F418175A-298F-4D8A-8C5E-035EA93BB750",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "2399496C-5248-494A-B518-EC58B692873A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "BAE3172A-6598-4776-8951-5419218625AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "74FC0EC7-A1FA-4149-88FD-D8CBCEFAD123",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "D95515F4-F031-47AE-878F-2136E42D911D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.12:*:*:*:*:*:*:*",
"matchCriteriaId": "BEF4AB2B-1E3A-4228-95DD-BF448EC37955",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.0.13:*:*:*:*:*:*:*",
"matchCriteriaId": "F81352D0-CDFF-45DA-8624-E9F8CBC4495C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "11B043E1-B0D1-457B-B935-5332FA3A9913",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "7357359D-090F-4FFB-8915-BB100E42DFB2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "6B5D8429-91C9-4084-821D-866555F63100",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "0C3C269D-2200-4756-948C-8647E3C791A6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.1.4:*:*:*:*:*:*:*",
"matchCriteriaId": "C9549D64-7DF6-4E3B-A531-3D3BA178453E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.1.5:*:*:*:*:*:*:*",
"matchCriteriaId": "9EBFF451-371D-4190-B036-B297A6F7744C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "D9B62242-245F-4C39-8F21-E5A73BACA5BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.1.7:*:*:*:*:*:*:*",
"matchCriteriaId": "9E0F05BF-5588-4D89-92FE-6A8244B250B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.1.8:*:*:*:*:*:*:*",
"matchCriteriaId": "DD4ADE97-28EC-4187-8E0A-2AC68C55E985",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "A474ADFC-D654-4A58-898C-D4BBCA7AA9B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A15484B0-95AE-41DA-BE7C-9BF16A7CF8BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "5EBB9413-B8F4-4A15-BA48-15B91A44BBD2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "FCB2A68B-00D1-42E1-B229-459A53E70FE5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "2F77E4BD-BC67-4607-9C49-4B6B495C6813",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.2.5:*:*:*:*:*:*:*",
"matchCriteriaId": "0CB3677E-FEBD-4E52-9220-EB2B9B9D0CB9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.2.6:*:*:*:*:*:*:*",
"matchCriteriaId": "3DC0E792-87D4-403D-898C-16A54CBB252C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.2.7:*:*:*:*:*:*:*",
"matchCriteriaId": "6B16850A-8EFB-41FC-B82D-12EAD2DBA403",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.2.8:*:*:*:*:*:*:*",
"matchCriteriaId": "FAC230D7-3139-43AF-BBA0-256DB40258DF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.2.9:*:*:*:*:*:*:*",
"matchCriteriaId": "2A4C3406-A649-4318-A97E-C22A6296417F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "91E7CEA6-82AD-4F79-A61E-5B94736FEB7F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "76ED9568-625C-475A-A3BB-DD2ECC16C8F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "8D01C4A1-30C0-4114-8701-B9D3048EF0D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "30EF6B34-572F-433C-AD14-7D0056A0CF13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.4:*:*:*:*:*:*:*",
"matchCriteriaId": "9F60150F-E191-46C8-90D4-84C2A7A64E94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "6F7C9F51-29CF-4405-B747-7FA2C1F2624C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.6:*:*:*:*:*:*:*",
"matchCriteriaId": "465BCB9C-93E7-4DA3-A913-4A6A65064C8B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.7:*:*:*:*:*:*:*",
"matchCriteriaId": "50DE6FE4-B8B3-4DFE-8B08-D70F31E3B06F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.8:*:*:*:*:*:*:*",
"matchCriteriaId": "02D62524-0622-402A-AF8A-29EB7D76227E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.9:*:*:*:*:*:*:*",
"matchCriteriaId": "5A0E9C5C-3A83-4BE2-AA45-6BF9BE752F07",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.10:*:*:*:*:*:*:*",
"matchCriteriaId": "8705FCCC-702A-4720-81AE-5BD2B51E7120",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.11:*:*:*:*:*:*:*",
"matchCriteriaId": "8CC35E0D-13E7-45CE-83DF-AF0283015851",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.12:*:*:*:*:*:*:*",
"matchCriteriaId": "16EF2013-35E2-4186-83D5-73B5D27C8B2C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.13:*:*:*:*:*:*:*",
"matchCriteriaId": "6A7123E6-B6DC-4D62-AF12-A0337490A5F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.14:*:*:*:*:*:*:*",
"matchCriteriaId": "78B87EB0-7423-42A8-8204-3A224B6D15F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.15:*:*:*:*:*:*:*",
"matchCriteriaId": "C45A713B-5683-439F-8800-ED9306DF4D4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.16:*:*:*:*:*:*:*",
"matchCriteriaId": "3024673D-A822-407B-92D3-4BDD3625AFDB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.3.17:*:*:*:*:*:*:*",
"matchCriteriaId": "9C035281-B2A8-4E2B-8F49-DA1743D39A2D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "BDB4A41C-759E-43E5-8A81-64801CB70F30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "3763643A-F3C3-44A6-90E5-23E02632F687",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "009A9E65-EDE4-4EDF-9449-CBA3358BD4E5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.3:*:*:*:*:*:*:*",
"matchCriteriaId": "296AB05B-83E1-4101-93CA-05493949CC18",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.4:*:*:*:*:*:*:*",
"matchCriteriaId": "062750B9-B461-4768-86D8-4B36032A9CB7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.5:*:*:*:*:*:*:*",
"matchCriteriaId": "53CE8C29-5FB0-48F9-B2CD-20B07AD7E7A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.6:*:*:*:*:*:*:*",
"matchCriteriaId": "D3A3EF12-1657-46D3-AC5A-7FDF952128F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.7:*:*:*:*:*:*:*",
"matchCriteriaId": "A57012A1-98FC-41B2-AA29-0F683BF1F009",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.8:*:*:*:*:*:*:*",
"matchCriteriaId": "1A6E27E2-12BF-4E49-9115-6664D2969A51",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.9:*:*:*:*:*:*:*",
"matchCriteriaId": "14F99407-B7A8-4A3C-9DB5-AD18FEF360E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.10:*:*:*:*:*:*:*",
"matchCriteriaId": "F59FD2D1-FC65-4A15-9572-91F05AF3DCBB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.11:*:*:*:*:*:*:*",
"matchCriteriaId": "90CDB220-6C6E-4559-B4C8-2DA76281B86B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.12:*:*:*:*:*:*:*",
"matchCriteriaId": "27356E94-1E91-4F36-A86A-53E09CA98A32",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.13:*:*:*:*:*:*:*",
"matchCriteriaId": "A56BF9D2-8C62-4A5A-BFF3-5305B51A151C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.4.14:*:*:*:*:*:*:*",
"matchCriteriaId": "3749C43E-2E00-4341-928C-EB1C7EFA9C4E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "61C9F45D-D6F8-401D-B89F-E1613EDE0E4C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C72655FD-66E1-4AE3-854B-D39DF775561B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "BB7B8CD6-29B2-42AD-B3F7-21567A9FC471",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.3:*:*:*:*:*:*:*",
"matchCriteriaId": "B60A4BB8-10DF-4B6C-91AA-FCC9A5DBACD9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.4:*:*:*:*:*:*:*",
"matchCriteriaId": "AEAF72ED-5D20-4651-8C23-5A43E659E23B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.5:*:*:*:*:*:*:*",
"matchCriteriaId": "7371FF77-3F3A-410A-80E4-472C279EFB6E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.6:*:*:*:*:*:*:*",
"matchCriteriaId": "4137DF76-4011-485F-91F9-C33B102B0DBE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.7:*:*:*:*:*:*:*",
"matchCriteriaId": "09B28241-C823-413C-87B9-D41677152029",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.8:*:*:*:*:*:*:*",
"matchCriteriaId": "80917139-4ACB-46A3-833F-4C2202176C1C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.9:*:*:*:*:*:*:*",
"matchCriteriaId": "3B237CFC-1872-4067-AE2C-84F5CE216A66",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.10:*:*:*:*:*:*:*",
"matchCriteriaId": "67297B13-AA53-46B7-A741-839E90673012",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.11:*:*:*:*:*:*:*",
"matchCriteriaId": "E82F4543-9D07-4D8A-9FCC-C451F856CF2F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.12:*:*:*:*:*:*:*",
"matchCriteriaId": "C0508630-504B-4792-87B6-7A9A9E847AE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.13:*:*:*:*:*:*:*",
"matchCriteriaId": "8BA511E1-9C04-4E8F-9F54-6CEC6FC1785D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.14:*:*:*:*:*:*:*",
"matchCriteriaId": "017A467B-05EC-4FB0-B276-8A94BE04256D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.15:*:*:*:*:*:*:*",
"matchCriteriaId": "55FBCE41-F85B-4F9B-95A4-8DEDD612B9E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.16:*:*:*:*:*:*:*",
"matchCriteriaId": "2D0AF3D3-B7B8-468B-9C6B-BC0FBEF63337",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.17:*:*:*:*:*:*:*",
"matchCriteriaId": "10AC4442-B9F5-4A47-B124-E6C63CF4478C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.18:*:*:*:*:*:*:*",
"matchCriteriaId": "89881639-8BC2-4D1C-ACD8-4E804393B4D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.19:*:*:*:*:*:*:*",
"matchCriteriaId": "6A13C407-B1BF-477A-9EB7-ED9AAADD1C05",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.20:*:*:*:*:*:*:*",
"matchCriteriaId": "CC9BF9BA-9785-4F85-9C3C-83452A94EFFB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.21:*:*:*:*:*:*:*",
"matchCriteriaId": "13CD706E-10D8-4405-B63D-C05989B3D4A3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.22:*:*:*:*:*:*:*",
"matchCriteriaId": "BE3E016D-EC0D-40E8-9FB3-B1E35337D6A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.23:*:*:*:*:*:*:*",
"matchCriteriaId": "0BDC2E57-AE92-4CB7-8FE3-D6BBB6820786",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.24:*:*:*:*:*:*:*",
"matchCriteriaId": "8C1A8F6C-4421-4313-9CB2-798AE089D8DE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.25:*:*:*:*:*:*:*",
"matchCriteriaId": "7FFC7BBB-A580-4C4A-AAE0-AB870E7E52A0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.26:*:*:*:*:*:*:*",
"matchCriteriaId": "3C2C177A-1C4A-4CFB-9F3F-697086E1AA2E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.27:*:*:*:*:*:*:*",
"matchCriteriaId": "08525CC1-ACEB-4B14-8903-D72BAAD50814",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:jquindlen:wpstorecart:2.5.28:*:*:*:*:*:*:*",
"matchCriteriaId": "7B98B5AB-35AE-47AF-872E-AA79142E4145",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:wordpress:wordpress:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A77EB0E7-7FA7-4232-97DF-7C7587D163F1",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/wpstorecart."
},
{
"lang": "es",
"value": "Vulnerabilidad de subida de fichero sin restricci\u00f3n en php/upload.php del plugin wpStoreCart en versiones anteriores a la 2.5.30 de WordPress. Permite a usuarios remotos ejecutar c\u00f3digo arbitrario subiendo un archivo con una extensi\u00f3n de ejecutable y, despu\u00e9s, accediendo a \u00e9l a trav\u00e9s de una petici\u00f3n directa al fichero en uploads/wpstorecart."
}
],
"id": "CVE-2012-3576",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2012-06-16T00:55:07.873",
"references": [
{
"source": "cve@mitre.org",
"url": "http://plugins.trac.wordpress.org/changeset?old_path=%2Fwpstorecart\u0026old=555124\u0026new_path=%2Fwpstorecart\u0026new=555124"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/49459"
},
{
"source": "cve@mitre.org",
"url": "http://wordpress.org/extend/plugins/wpstorecart/changelog/"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit"
],
"url": "http://www.exploit-db.com/exploits/19023"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/76166"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://plugins.trac.wordpress.org/changeset?old_path=%2Fwpstorecart\u0026old=555124\u0026new_path=%2Fwpstorecart\u0026new=555124"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/49459"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://wordpress.org/extend/plugins/wpstorecart/changelog/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit"
],
"url": "http://www.exploit-db.com/exploits/19023"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/76166"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-264"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CVE-2012-3576 (GCVE-0-2012-3576)
Vulnerability from cvelistv5 – Published: 2012-06-16 00:00 – Updated: 2024-08-06 20:13
VLAI?
Summary
Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/wpstorecart.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T20:13:51.005Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "wpstorecart-upload-file-upload(76166)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/76166"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://plugins.trac.wordpress.org/changeset?old_path=%2Fwpstorecart\u0026old=555124\u0026new_path=%2Fwpstorecart\u0026new=555124"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://wordpress.org/extend/plugins/wpstorecart/changelog/"
},
{
"name": "19023",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB",
"x_transferred"
],
"url": "http://www.exploit-db.com/exploits/19023"
},
{
"name": "49459",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/49459"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2012-06-03T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/wpstorecart."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-28T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "wpstorecart-upload-file-upload(76166)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/76166"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://plugins.trac.wordpress.org/changeset?old_path=%2Fwpstorecart\u0026old=555124\u0026new_path=%2Fwpstorecart\u0026new=555124"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://wordpress.org/extend/plugins/wpstorecart/changelog/"
},
{
"name": "19023",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB"
],
"url": "http://www.exploit-db.com/exploits/19023"
},
{
"name": "49459",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/49459"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2012-3576",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/wpstorecart."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "wpstorecart-upload-file-upload(76166)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/76166"
},
{
"name": "http://plugins.trac.wordpress.org/changeset?old_path=%2Fwpstorecart\u0026old=555124\u0026new_path=%2Fwpstorecart\u0026new=555124",
"refsource": "CONFIRM",
"url": "http://plugins.trac.wordpress.org/changeset?old_path=%2Fwpstorecart\u0026old=555124\u0026new_path=%2Fwpstorecart\u0026new=555124"
},
{
"name": "http://wordpress.org/extend/plugins/wpstorecart/changelog/",
"refsource": "CONFIRM",
"url": "http://wordpress.org/extend/plugins/wpstorecart/changelog/"
},
{
"name": "19023",
"refsource": "EXPLOIT-DB",
"url": "http://www.exploit-db.com/exploits/19023"
},
{
"name": "49459",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/49459"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2012-3576",
"datePublished": "2012-06-16T00:00:00",
"dateReserved": "2012-06-15T00:00:00",
"dateUpdated": "2024-08-06T20:13:51.005Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2012-3576 (GCVE-0-2012-3576)
Vulnerability from nvd – Published: 2012-06-16 00:00 – Updated: 2024-08-06 20:13
VLAI?
Summary
Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/wpstorecart.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T20:13:51.005Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "wpstorecart-upload-file-upload(76166)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/76166"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://plugins.trac.wordpress.org/changeset?old_path=%2Fwpstorecart\u0026old=555124\u0026new_path=%2Fwpstorecart\u0026new=555124"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://wordpress.org/extend/plugins/wpstorecart/changelog/"
},
{
"name": "19023",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB",
"x_transferred"
],
"url": "http://www.exploit-db.com/exploits/19023"
},
{
"name": "49459",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/49459"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2012-06-03T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/wpstorecart."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-28T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "wpstorecart-upload-file-upload(76166)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/76166"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://plugins.trac.wordpress.org/changeset?old_path=%2Fwpstorecart\u0026old=555124\u0026new_path=%2Fwpstorecart\u0026new=555124"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://wordpress.org/extend/plugins/wpstorecart/changelog/"
},
{
"name": "19023",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB"
],
"url": "http://www.exploit-db.com/exploits/19023"
},
{
"name": "49459",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/49459"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2012-3576",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/wpstorecart."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "wpstorecart-upload-file-upload(76166)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/76166"
},
{
"name": "http://plugins.trac.wordpress.org/changeset?old_path=%2Fwpstorecart\u0026old=555124\u0026new_path=%2Fwpstorecart\u0026new=555124",
"refsource": "CONFIRM",
"url": "http://plugins.trac.wordpress.org/changeset?old_path=%2Fwpstorecart\u0026old=555124\u0026new_path=%2Fwpstorecart\u0026new=555124"
},
{
"name": "http://wordpress.org/extend/plugins/wpstorecart/changelog/",
"refsource": "CONFIRM",
"url": "http://wordpress.org/extend/plugins/wpstorecart/changelog/"
},
{
"name": "19023",
"refsource": "EXPLOIT-DB",
"url": "http://www.exploit-db.com/exploits/19023"
},
{
"name": "49459",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/49459"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2012-3576",
"datePublished": "2012-06-16T00:00:00",
"dateReserved": "2012-06-15T00:00:00",
"dateUpdated": "2024-08-06T20:13:51.005Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}