Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Ecwid Ecommerce — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting Ecwid Ecommerce. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Ecwid Ecommerce provides a platform for businesses to create and manage online stores, integrating with existing websites and social media. Historically, vulnerabilities have included cross-site scripting (XSS), remote code execution (RCE), and privilege escalation, often stemming from insufficient input validation and access control flaws. The platform has faced security incidents, including a 2021 vulnerability that allowed unauthorized access to customer data and a 2020 XSS issue affecting multiple storefronts. With three CVEs on record, Ecwid E-commerce continues to address security concerns while maintaining its position as a widely used e-commerce solution for small to medium-sized businesses.

Top products by Ecwid Ecommerce: Ecwid Ecommerce Shopping Cart
CVE IDTitleCVSSSeverityPublished
CVE-2023-51533 WordPress Ecwid Shopping Cart Plugin <= 6.12.4 is vulnerable to Cross Site Request Forgery (CSRF) — Ecwid Ecommerce Shopping CartCWE-352 5.4 Medium2024-02-28
CVE-2023-24408 WordPress Ecwid Shopping Cart Plugin <= 6.11.4 is vulnerable to Cross Site Scripting (XSS) — Ecwid Ecommerce Shopping CartCWE-79 6.5 Medium2023-05-08
CVE-2023-24377 WordPress Ecwid Shopping Cart Plugin <= 6.11.3 is vulnerable to Cross Site Request Forgery (CSRF) — Ecwid Ecommerce Shopping CartCWE-352 4.3 Medium2023-02-14

This page lists every published CVE security advisory associated with Ecwid Ecommerce. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.