Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-47511

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in nanbu Welcart e-Commerce allows Path Traversal. This issue affects Welcart e-Commerce: from n/a through 2.11.13.

Published

2025-06-09T16:15:41.393

Last Modified

2025-06-25T19:42:49.363

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.8 (MEDIUM)

Weaknesses

Type: Secondary
CWE-22

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	welcart	welcart_e-commerce	< 2.11.14	Yes

References

https://patchstack.com/database/wordpress/plugin/usc-e-shop/vulnerability/wordpress-welcart-e-commerce-2-11-13-arbitrary-file-deletion-vulnerability?_s_id=cve Third Party Advisory ([email protected])