Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

levelfourstorefront — Vulnerabilities & Security Advisories 11

Browse all 11 CVE security advisories affecting levelfourstorefront. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Levelfourstorefront is an e-commerce platform designed for online retail operations. Historically, it has been susceptible to multiple vulnerability classes including remote code execution, cross-site scripting, and privilege escalation, contributing to its 11 recorded CVEs. The platform's security posture has been marked by authentication weaknesses and insufficient input validation in its shopping cart and checkout processes. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests ongoing challenges in secure coding practices, particularly in user-facing components and administrative interfaces.

Top products by levelfourstorefront: Shopping Cart & eCommerce Store
CVE IDTitleCVSSSeverityPublished
CVE-2024-12712 Shopping Cart & eCommerce Store <= 5.7.8 - Missing Authorization to Order Updates — Shopping Cart & eCommerce StoreCWE-862 5.3 Medium2025-01-08
CVE-2024-7827 Shopping Cart & eCommerce Store <= 5.7.2 - Authenticated (Contributor+) SQL Injection via model_number Parameter — Shopping Cart & eCommerce StoreCWE-89 8.8 High2024-08-20
CVE-2024-4213 Shopping Cart & eCommerce Store <= 5.6.4 - Sensitive Information Exposure — Shopping Cart & eCommerce StoreCWE-922 5.3 Medium2024-05-10
CVE-2024-3211 Shopping Cart & eCommerce Store <= 5.6.3 - Authenticated (Contributor+) SQL Injection — Shopping Cart & eCommerce StoreCWE-89 8.8 High2024-04-12
CVE-2023-3023 WP EasyCart <= 5.4.10 - Authenticated (Administrator+) SQL Injection via 'orderby' — Shopping Cart & eCommerce StoreCWE-89 7.2 High2023-07-12
CVE-2023-2892 WP EasyCart <= 5.4.8 - Cross-Site Request Forgery via process_bulk_delete_product — Shopping Cart & eCommerce StoreCWE-352 6.5 Medium2023-06-09
CVE-2023-2894 WP EasyCart <= 5.4.8 - Cross-Site Request Forgery via process_bulk_deactivate_product — Shopping Cart & eCommerce StoreCWE-352 4.3 Medium2023-06-09
CVE-2023-2893 WP EasyCart <= 5.4.8 - Cross-Site Request Forgery via process_deactivate_product — Shopping Cart & eCommerce StoreCWE-352 4.3 Medium2023-06-09
CVE-2023-2896 WP EasyCart <= 5.4.8 - Cross-Site Request Forgery via process_duplicate_product — Shopping Cart & eCommerce StoreCWE-352 4.3 Medium2023-06-09
CVE-2023-2895 WP EasyCart <= 5.4.8 - Cross-Site Request Forgery via process_bulk_activate_product — Shopping Cart & eCommerce StoreCWE-352 4.3 Medium2023-06-09
CVE-2023-2891 WP EasyCart <= 5.4.8 - Cross-Site Request Forgery via process_delete_product — Shopping Cart & eCommerce StoreCWE-352 6.5 Medium2023-06-09

This page lists every published CVE security advisory associated with levelfourstorefront. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.