3 matches found
CVE-2023-27460
Missing Authorization vulnerability in CodePeople, paypaldev CP Contact Form with Paypal allows Functionality Misuse.This issue affects CP Contact Form with Paypal: from n/a through 1.3.34...
CVE-2023-27460
CVE-2023-27460 affects WordPress CP Contact Form with Paypal plugin, <=1.3.34, due to Missing Authorization that could enable feedback submission abuse. A fix is available: upgrade to version 1.3.35. Public advisories show differing CVSS assessments (NVD: 8.8 HIGH; Patchstack: 4.3 MEDIUM), but...
WordPress CP Contact Form with Paypal Plugin <= 1.3.34 is vulnerable to Other Vulnerability Type
Software CP Contact Form with Paypal Type Plugin Vulnerable versions = 1.3.34 Fixed in 1.3.35 OWASP Top 10 A5: Broken Access Control Classification Other Vulnerability Type CVE CVE-2023-27460 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID b103753de482 Credits István Márto...