CVE-2026-1235 | WP eCommerce Plugin up to 3.15.1 on WordPress deserialization

Inserito da Angelo Barbosa | Feb 11, 2026 | CVE

A vulnerability was found in WP eCommerce Plugin up to 3.15.1 on WordPress. It has been rated as critical. Affected is an unknown function. The manipulation leads to deserialization.

This vulnerability is listed as CVE-2026-1235. The attack may be initiated remotely. There is no available exploit.

CVE-2026-1235 | WP eCommerce Plugin up to 3.15.1 on WordPress deserialization

Post correlati

CVE-2024-8941 | Scriptcase 9.4.019 nm_edit_php_edit.php subpage path traversal

CVE-2025-31979 | HCL BigFix Service Management 23 unrestricted upload (KB0123631)

CVE-2024-50706 | Uniguest Tripleplay up to 24.2.0 sql injection

CVE-2024-21591 | Juniper Junos OS up to 22.4R2-S1 on SRX/EX J-Web out-of-bounds write (JSA75729)