36 matches found
EUVD-2021-2249
Malware in sbrugna...
EUVD-2024-50721
Malicious code in bioql PyPI...
EUVD-2022-2632
Malicious code in bioql PyPI...
EUVD-2025-10476
Malicious code in bioql PyPI...
CVE-2024-12257
The CardGate Payments for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 3.2.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to injec...
CVE-2020-8818
An issue was discovered in the CardGate Payments plugin through 2.0.30 for Magento 2. Lack of origin authentication in the IPN callback processing function in Controller/Payment/Callback.php allows an attacker to remotely replace critical plugin settings merchant ID, secret key, etc. and therefor...
CVE-2020-8819
An issue was discovered in the CardGate Payments plugin through 3.1.15 for WooCommerce. Lack of origin authentication in the IPN callback processing function in cardgate/cardgate.php allows an attacker to remotely replace critical plugin settings merchant ID, secret key, etc. and therefore bypass...
CVE-2025-32119
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CardGate CardGate Payments for WooCommerce cardgate allows Blind SQL Injection.This issue affects CardGate Payments for WooCommerce: from n/a through = 3.2.1...
CVE-2025-32119
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CardGate CardGate Payments for WooCommerce cardgate allows Blind SQL Injection.This issue affects CardGate Payments for WooCommerce: from n/a through = 3.2.1...
CVE-2025-32119 WordPress CardGate Payments for WooCommerce plugin <= 3.2.1 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CardGate CardGate Payments for WooCommerce cardgate allows Blind SQL Injection.This issue affects CardGate Payments for WooCommerce: from n/a through = 3.2.1...
CVE-2025-32119
CVE-2025-32119 (CardGate Payments for WooCommerce) is an authenticated (Administrator) SQL Injection vulnerability in CardGate Payments for WooCommerce plugin up to v3.2.1. Exploitation requires admin privileges; patch/status indicates a fix has been released (Patched). The issue is due to improp...
CVE-2025-32119 WordPress CardGate Payments for WooCommerce plugin <= 3.2.1 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CardGate CardGate Payments for WooCommerce cardgate allows Blind SQL Injection.This issue affects CardGate Payments for WooCommerce: from n/a through = 3.2.1...
WordPress plugin CardGate CardGate Payments for WooCommerce SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin...
WordPress CardGate Payments for WooCommerce plugin <= 3.2.1 - SQL Injection vulnerability
SQL Injection vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin CardGate Payments for WooCommerce versions = 3.2.1...
CVE-2024-12257 CardGate Payments for WooCommerce <= 3.2.1 - Reflected Cross-Site Scripting
The CardGate Payments for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 3.2.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to injec...
CVE-2024-12257 CardGate Payments for WooCommerce <= 3.2.1 - Reflected Cross-Site Scripting
The CardGate Payments for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 3.2.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to injec...
CVE-2024-12257
CVE-2024-12257 : CardGate Payments for WooCommerce (WordPress) is affected by a Reflected Cross-Site Scripting via the page parameter in all versions up to 3.2.1 due to insufficient input sanitization and output escaping. Unauthenticated attackers can trigger script execution in pages when a user...
WordPress plugin CardGate Payments for WooCommerce 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
PT-2024-17511 · WordPress · Cardgate Payments For Woocommerce
Name of the Vulnerable Software and Affected Versions: CardGate Payments for WooCommerce plugin for WordPress versions up to, and including, 3.2.1 Description: The issue is related to Reflected Cross-Site Scripting due to insufficient input sanitization and output escaping. This allows...
WordPress CardGate Payments for WooCommerce plugin <= 3.2.1 - Reflected Cross-Site Scripting vulnerability
Reflected Cross-Site Scripting vulnerability discovered by Colin Xu in WordPress Plugin CardGate Payments for WooCommerce versions = 3.2.1...