cleantalk
Vulnerabilities and Security Researches

WPshop 2 – E-Commerce, 405aa69006f803e554963210e83e3bd549a1ebe1

CVE, Research URL

405aa69006f803e554963210e83e3bd549a1ebe1

Home page URL

Security reports for WPshop 2 – E-Commerce

Application

WPshop 2 – E-Commerce

Published on
Mar 09, 2015
Research Description
WPshop 2 &#8211; E-Commerce [wpshop] < 1.3.9.6 WordPress WP shop Plugin <= 1.3.9.5 - Arbitrary File Upload This plugin is prone to an arbitrary file upload vulnerability during "ajaxUpload" action. Update the plugin.
Affected versions
max 1.3.9.6.
Status
vulnerable
Previous vulnerability researches
wpShopGermany &#8211; Protected Shops (CVE-2023-39919) , Jun 07, 2024
wpShopGermany &#8211; Protected Shops (4e388930334fd37c3c53d869b323bd9ab7a27623) , Jun 07, 2024
WPshop 2 &#8211; E-Commerce (CVE-2025-3853) , May 08, 2025
WPshop 2 &#8211; E-Commerce (CVE-2025-3852) , May 08, 2025
WPshop 2 &#8211; E-Commerce (6d9637e162c1f4d521a590681b37fa2918babece) , Jun 16, 2026
New vulnerability
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026
Social Hashtags (1965c7b04565befbb11c28b56cb6922733a47b03) , Jun 16, 2026
Social Hashtags (a7cf6766582e354e702766a86f85716127d19bdc) , Jun 16, 2026
Simple Calendar &#8211; Google Calendar Plugin (e98a6264-9c5a-417f-b2f8-bd0017b411a0) , Jun 16, 2026