CVE-2025-14450 Wallet System for WooCommerce <= 2.7.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Wallet Balance Manipulation

The Wallet System for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'changewalletfundrequeststatuscallback' function in all versions up to, and including, 2.7.2. This makes it possible for authenticated attackers, with...

CVE-2025-8699

Some "Stored Value" Unattended Payment Solutions of KioSoft use vulnerable NFC cards. Attackers could potentially use this vulnerability to change the balance on the cards and generate money. The account balance is stored on an insecure MiFare Classic NFC card and can be read and written back. By...

WordPress plugin Wallet System for WooCommerce 授权问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. An authorization issue vulnerability exists...

Crypto Alley Shares Number Error Vulnerability

Crypto Alley Shares CAST is an Ether-based digital currency. An integer overflow vulnerability exists in the 'mintToken' function in CAST's smart contract implementation. An attacker can exploit the vulnerability to set the balance of any user to an arbitrary value...

PFGc Number Error Vulnerability

PFGc is an ethereum-based digital currency.An integer overflow vulnerability exists in the smart contract implementation of PFGc in the 'transfer', 'transferFrom', and 'mint ' functions in the PFGc smart contract implementation suffer from an integer overflow vulnerability. An attacker could...

GemstoneToken has a flawed logic vulnerability

GemstoneToken is an Ether-based digital currency. An integer overflow vulnerability exists in the 'mintToken' function in the smart contract implementation of GemstoneToken. An attacker can exploit this vulnerability to set the balance of any user to an arbitrary value...

Carbon Exchange Cion Token Digital Error Vulnerability

Carbon Exchange Cion Token CEC is an ethereum-based digital currency.An integer overflow vulnerability exists in the 'mintToken' function in the smart contract implementation of CEC. An attacker can exploit this vulnerability to set the balance of any user to an arbitrary value...

EPPCOIN Logic Flaw Vulnerability

EPPCOIN EPP is an ethereum-based digital currency. An integer overflow vulnerability exists in the 'mintToken' function in EPP's smart contract implementation. An attacker can exploit this vulnerability to set the balance of any user to an arbitrary value...

SIPCToken Integer Overflow Vulnerability

SIPCToken is an Ether-based digital currency. An integer overflow vulnerability exists in the 'mintToken' function in SIPCToken's smart contract implementation. An attacker can exploit this vulnerability to set the balance of any user to an arbitrary value...

Micro BTC Integer Overflow Vulnerability

Micro BTC is a tradable Ether ERC20 token. An integer overflow vulnerability exists in the mintToken function of Micro BTC's smart contract implementation. The vulnerability can be exploited by the contract owner to set the balance of any user to any value...

EXGROUP Numeric Error Vulnerability

EXGROUP is an Ether-based digital currency. An integer overflow vulnerability exists in the 'mintToken' function in EXGROUP's smart contract implementation. An attacker can exploit this vulnerability to set the balance of any user to an arbitrary value...