cleantalk
Vulnerabilities and Security Researches

Welcart e-Commerce, CVE-2025-54012

CVE, Research URL

CVE-2025-54012

Home page URL

Security reports for Welcart e-Commerce

Application

Welcart e-Commerce

Published on
Aug 20, 2025
Research Description
Deserialization of Untrusted Data vulnerability in nanbu Welcart e-Commerce allows Object Injection. This issue affects Welcart e-Commerce: from n/a through 2.11.16.
Affected versions
Min -, max 2.11.17.
Status
vulnerable
Previous vulnerability researches
Jenga Payment Gateway for WooCommerce (CVE-2025-49432) , Aug 20, 2025
New vulnerability
Cloudflare Image Resizing – Optimize & Accelerate Your Images (CVE-2025-8723) , Aug 22, 2025
CubeWP – All-in-One Dynamic Content Framework (CVE-2025-54735) , Aug 22, 2025
WP Webhooks – Automate repetitive tasks by creating powerful automation workflows directly within WordPress (CVE-2025-8895) , Aug 22, 2025
Laposta WooCommerce (CVE-2025-49434) , Aug 22, 2025
Themify Icons (CVE-2025-49395) , Aug 22, 2025