2025-04-23 07:06:49
Wordfence
PUBLISHED
The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.1.2 via the file_url parameter. This makes it possible for unauthenticated attackers to view potentially sensitive information and download a digital product without paying for it.