CVE-2014-9308

WP EasyCart < 3.0.8 - Authenticated Arbitrary File Upload via Banner Upload Script

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2014-9308. PoCs published by Metasploit, Kacper Szurek, Kacper Szurek, rastating, including Metasploit module exploits/unix/webapp/wp_easycart_unrestricted_file_upload.

AI-analyzed exploit summary This Metasploit module exploits an unrestricted file upload vulnerability in WordPress WP EasyCart plugin, allowing remote attackers to upload and execute arbitrary PHP code via the banneruploaderscript.php endpoint.

Description

Unrestricted file upload vulnerability in inc/amfphp/administration/banneruploaderscript.php in the WP EasyCart (aka WordPress Shopping Cart) plugin before 3.0.9 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in products/banners/.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubywebappsphp
https://www.exploit-db.com/exploits/36043

This Metasploit module exploits an unrestricted file upload vulnerability in WordPress WP EasyCart plugin, allowing remote attackers to upload and execute arbitrary PHP code via the banneruploaderscript.php endpoint.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: WordPress WP EasyCart Plugin <= 3.0.18
Auth required
Prerequisites: Valid WordPress or EasyCart credentials · Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
by Kacper Szurek · htmlwebappsphp
https://www.exploit-db.com/exploits/35730

This exploit demonstrates an unrestricted file upload vulnerability in WordPress Shopping Cart 3.0.4, allowing any registered user to upload arbitrary files due to an incorrect if statement in banneruploaderscript.php.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: WordPress Shopping Cart 3.0.4
Auth required
Prerequisites: Registered user account on the target WordPress site
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by Kacper Szurek, rastating · rubypocphp
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/wp_easycart_unrestricted_file_upload.rb

This Metasploit module exploits an unrestricted file upload vulnerability in WordPress WP EasyCart plugin, allowing remote code execution by uploading a malicious PHP file. It supports both WordPress and EasyCart authentication methods.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: WordPress WP EasyCart Plugin <= 3.0.18
Auth required
Prerequisites: Valid WordPress or EasyCart credentials · Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/71983
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/show/osvdb/116806
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/35730

Scores

EPSS 0.5162
EPSS Percentile 98.8%

Details

Status published
Products (1)
wpeasycart/wp_easycart < 3.0.8
Published Jan 15, 2015
Tracked Since Feb 18, 2026