9 matches found
CVE-2025-23804
Cross-Site Request Forgery CSRF vulnerability in Shiv Prakash Tiwari WP Service Payment Form With Authorize.net wp-service-payment-form-with-authorizenet allows Reflected XSS.This issue affects WP Service Payment Form With Authorize.net: from n/a through = 2.6.0...
EUVD-2025-3436
Malicious code in bioql PyPI...
CVE-2025-23804
Cross-Site Request Forgery CSRF vulnerability in Shiv Prakash Tiwari WP Service Payment Form With Authorize.net wp-service-payment-form-with-authorizenet allows Reflected XSS.This issue affects WP Service Payment Form With Authorize.net: from n/a through = 2.6.0...
CVE-2025-23804
CVE-2025-23804 is a CSRF vulnerability in the WordPress plugin WP Service Payment Form With Authorize.net that can enable a Reflected XSS . The Red Hat advisory reiterates the same CVE and describes the flaw as CSRF affecting the plugin up to version 2.6.0 . The base metrics list a CVSS v3.1 scor...
WordPress WP Service Payment Form With Authorize.net Plugin <= 2.6.0 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability
CSRF to Reflected Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 in WordPress Plugin WP Service Payment Form With Authorize.net versions = 2.6.0...
PT-2025-5104 · WordPress · Wp Service Payment Form With Authorize.Net
Name of the Vulnerable Software and Affected Versions: WP Service Payment Form With Authorize.net versions n/a through 2.6.0 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Reflected XSS. This means an attacker can trick a user into performing unintended...
WordPress plugin WP Service Payment Form With Authorize.net 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
CVE-2024-12258
CVE-2024-12258 — The WordPress plugin WP Service Payment Form With Authorize.net is vulnerable to Reflected Cross-Site Scripting via the page parameter in all versions up to 2.6.3 due to insufficient input sanitization and output escaping. The issue permits unauthenticated attackers to inject mal...
WordPress plugin WP Service Payment Form With Authorize.net 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...