Arbitrary File Upload Vulnerability in Welcart e-Commerce Versions 2.7 to 2.8.21

Arbitrary File Upload Vulnerability in Welcart e-Commerce Versions 2.7 to 2.8.21

CVE-2023-40219 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with editor or higher privilege to upload an arbitrary file to an unauthorized directory.

Learn more about our E Commerce Pen Testing.