CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/05/28 6:45 a.m.•6 views

EUVD-2026-32731

CVE•added 2026/05/28 6:45 a.m.•14 views

CVE-2026-9618

The CVE-2026-9618 entry concerns the PeachPay for WooCommerce plugin (WordPress) with versions up to and including 1.120.46. Affected component: peachpay_stripe_handle_admin_actions function, where missing/incorrect nonce validation enables Cross-Site Request Forgery. Impact: unauthenticated atta...

Positive Technologies•added 2026/05/28 12:0 a.m.•6 views

PT-2026-44210

CNNVD•added 2026/05/28 12:0 a.m.•4 views

Exploits0References9

WordPress plugin PeachPay — Payments & Express Checkout for WooCommerce 跨站请求伪造漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The WordPres...

Snyk•added 2026/05/04 3:2 a.m.•2 views

Malicious Package

Overview @apple-pay-trust/check-apple-pay-result is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organizatio...

OSSF Malicious Packages•added 2026/05/04 3:2 a.m.•7 views

Malicious code in @apple-pay-trust/check-apple-pay (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e70605dbfa408340f5181bb26e47fb08e3ff8925c50aee6cb62132e724ba7a09 The package @apple-pay-trust/check-apple-pay was found to contain malicious code. Source: ghsa-malware...

Snyk•added 2026/05/04 3:2 a.m.•0 views

Malicious Package

Overview @apple-pay-trust/check-apple-pay is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and...

OSV•added 2026/05/04 3:2 a.m.•4 views

MAL-2026-3317 Malicious code in @apple-pay-trust/destroy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6515019a886959d905d728f0fdcebeb16aa3e62bcf2e2643c0424ba87aeb8f79 The package @apple-pay-trust/destroy was found to contain malicious code. Source: ghsa-malware...

OSV•added 2026/05/04 3:2 a.m.•1 views

MAL-2026-3316 Malicious code in @apple-pay-trust/check-apple-pay (npm)

Snyk•added 2026/05/04 3:2 a.m.•2 views

Malicious Package

Overview @apple-pay-trust/destroy is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

Snyk•added 2026/05/04 3:2 a.m.•2 views

Malicious Package

Overview @apple-pay-trust/merchant-session is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and...

Snyk•added 2026/05/04 3:2 a.m.•1 views

Malicious Package

Overview @apple-pay-trust/finish is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packa...

OSSF Malicious Packages•added 2026/05/04 3:2 a.m.•6 views

Malicious code in @apple-pay-trust/destroy (npm)

OSSF Malicious Packages•added 2026/04/27 2:25 p.m.•3 views

Malicious code in @apple-pay-trust/authorize-payment (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6403670e0f9573b88d997609a27ef3630ca5d0442446368011a1980a1b56298 The package @apple-pay-trust/authorize-payment was found to contain malicious code. Source: ghsa-malware...

OSV•added 2026/04/27 2:25 p.m.•2 views

MAL-2026-3111 Malicious code in @apple-pay-trust/authorize-payment (npm)

OSSF Malicious Packages•added 2026/04/27 2:15 p.m.•4 views

Malicious code in @apple-pay-trust/cancelled (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0c6d2bdfddde00dc6bb5663ffb7fd381c2e392a8c65d6a8890b400c219c160d The package @apple-pay-trust/cancelled was found to contain malicious code. Source: ghsa-malware...

OSV•added 2026/04/27 2:15 p.m.•1 views

MAL-2026-3112 Malicious code in @apple-pay-trust/cancelled (npm)

OSSF Malicious Packages•added 2026/04/27 1:57 p.m.•5 views

Malicious code in @apple-pay-trust/finish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9abd2d210c4a5df0e95f326e80b2e6618647c03ba4158e1d6ffbd36d9f7b800a The package @apple-pay-trust/finish was found to contain malicious code. Source: ghsa-malware...

OSV•added 2026/04/27 1:57 p.m.•3 views

MAL-2026-3114 Malicious code in @apple-pay-trust/finish (npm)