CVE-2024-6075 – WP eStore < 8.5.5 - Coupon Deletion via CSRF
https://notcve.org/view.php?id=CVE-2024-6075
The wp-cart-for-digital-products WordPress plugin before 8.5.5 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks El complemento wp-cart-for-digital-products de WordPress anterior a 8.5.5 no tiene comprobaciones CSRF en algunos lugares, lo que podría permitir a los atacantes hacer que los usuarios que han iniciado sesión realicen acciones no deseadas a través de ataques CSRF. The WP eStore plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 8.5.4. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to delete coupons via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. • https://wpscan.com/vulnerability/b0e2658a-b075-48b6-a9d9-e141194117fc • CWE-352: Cross-Site Request Forgery (CSRF) •
CVE-2024-6073 – WP eStore < 8.5.5 - Reflected XSS in Discount Editing
https://notcve.org/view.php?id=CVE-2024-6073
The wp-cart-for-digital-products WordPress plugin before 8.5.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin El complemento wp-cart-for-digital-products de WordPress anterior a 8.5.5 no sanitiza ni escapa un parámetro antes de devolverlo a la página, lo que genera Cross-Site Scripting Reflejado que podría usarse contra usuarios con privilegios elevados, como el administrador. The WP eStore plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via Discount Editing in all versions up to, and including, 8.5.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. • https://wpscan.com/vulnerability/f04994bc-9eef-46de-995b-8598f7a749c4 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2024-6072 – WP eStore < 8.5.5 - Reflected XSS via $_SERVER['REQUEST_URI']
https://notcve.org/view.php?id=CVE-2024-6072
The wp-cart-for-digital-products WordPress plugin before 8.5.5 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers El complemento wp-cart-for-digital-products de WordPress anterior a 8.5.5 no escapa del parámetro $_SERVER['REQUEST_URI'] antes de devolverlo en un atributo, lo que podría generar cross-site scripting reflejado en navegadores web antiguos. The WP eStore plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via REQUEST_URI in all versions up to, and including, 8.5.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. • https://wpscan.com/vulnerability/1d8a344b-37e9-41e8-9de0-c67b7ca8e21b • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2024-6074 – WP eStore < 8.5.5 - Reflected XSS in Customer Editing
https://notcve.org/view.php?id=CVE-2024-6074
The wp-cart-for-digital-products WordPress plugin before 8.5.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin El complemento wp-cart-for-digital-products de WordPress anterior a 8.5.5 no sanitiza ni escapa un parámetro antes de devolverlo a la página, lo que genera Cross-Site Scripting Reflejado que podría usarse contra usuarios con privilegios elevados, como el administrador. The WP eStore plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via Customer Editing in all versions up to, and including, 8.5.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. • https://wpscan.com/vulnerability/e518af46-cb8e-43ff-a7c1-5300b36d9113 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2024-6076 – WP eStore < 8.5.5 - Reflected XSS in Category Editing
https://notcve.org/view.php?id=CVE-2024-6076
The wp-cart-for-digital-products WordPress plugin before 8.5.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin El complemento wp-cart-for-digital-products de WordPress anterior a 8.5.5 no sanitiza ni escapa un parámetro antes de devolverlo a la página, lo que genera Cross-Site Scripting Reflejado que podría usarse contra usuarios con privilegios elevados, como el administrador. The WP eStore plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via Category Editing in all versions up to, and including, 8.5.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. • https://wpscan.com/vulnerability/8369a2d8-1780-40c3-90ff-a826b9e9afd4 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •