5 matches found
CVE-2020-11497
An issue was discovered in the NAB Transact extension 2.1.0 for the WooCommerce plugin for WordPress. An online payment system bypass allows orders to be marked as fully paid by assigning an arbitrary bank transaction ID during the payment-details entry step...
CVE-2020-11497
An issue was discovered in the NAB Transact extension 2.1.0 for the WooCommerce plugin for WordPress. An online payment system bypass allows orders to be marked as fully paid by assigning an arbitrary bank transaction ID during the payment-details entry step...
Authentication flaw
An issue was discovered in the NAB Transact extension 2.1.0 for the WooCommerce plugin for WordPress. An online payment system bypass allows orders to be marked as fully paid by assigning an arbitrary bank transaction ID during the payment-details entry step...
CVE-2020-11497
The CVE-2020-11497 entry concerns the WordPress WooCommerce NAB Transact plugin (version 2.1.0). A payment bypass vulnerability exists because the plugin does not validate the origin of payment processor status requests, allowing an attacker to mark orders as fully paid by issuing a crafted GET r...
Threat Outbreak Alert: Fake Bank Transaction Document Email Messages on December 4, 2013
Medium Alert ID: 32015 First Published: 2013 December 4 22:29 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a bank transaction notification for the recipient. The text in the email message attempts to convince the...