2 matches found
CVE-2025-12903
The Payment Plugins Braintree For WooCommerce plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the wc-braintree/v1/3ds/vaultednonce REST API endpoint in all versions up to, and including, 3.2.78. This is due to the endpoint being registered with...
WordPress Payment Plugins Braintree For WooCommerce plugin <= 3.2.78 - Missing Authorization to Payment Token Exposure and Transaction Fraud vulnerability
Missing Authorization to Payment Token Exposure and Transaction Fraud vulnerability discovered by M Indra Purnama type5afe in WordPress Plugin Payment Plugins Braintree For WooCommerce versions = 3.2.78...