CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/05/23 5:30 a.m.•3 views

CVE-2023-41803

Missing Authorization vulnerability in BitPay BitPay Checkout for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BitPay Checkout for WooCommerce: from n/a through 4.1.0...

5.3CVSS8.5AI score0.00176EPSS

OSSF Malicious Packages•added 2025/05/07 4:46 a.m.•2 views

Malicious code in bitpay-push-notification-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff585151e0d20f0a3114337d0053b2fa14d0b74c758b8d3a60f9645028bba9f3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSV•added 2025/05/07 4:46 a.m.•4 views

Exploits0References3

MAL-2025-3679 Malicious code in bitpay-push-notification-client (npm)

NVD•added 2024/12/13 3:15 p.m.•4 views

Exploits0References3

CVE-2023-41803

5.3CVSS0.00176EPSS

Vulnrichment•added 2024/12/13 2:24 p.m.•7 views

CVE-2023-41803 WordPress BitPay Checkout for WooCommerce plugin <= 4.1.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in BitPay BitPay Checkout for WooCommerce bitpay-checkout-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BitPay Checkout for WooCommerce: from n/a through = 4.1.0...

5.3CVSS7.3AI score0.00176EPSS

Cvelist•added 2024/12/13 2:24 p.m.•13 views

CVE-2023-41803 WordPress BitPay Checkout for WooCommerce plugin <= 4.1.0 - Broken Access Control vulnerability

5.3CVSS0.00176EPSS

CNNVD•added 2024/12/13 12:0 a.m.•1 views

WordPress plugin BitPay Checkout for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.3CVSS8.6AI score0.00176EPSS

OSSF Malicious Packages•added 2024/06/25 1:27 p.m.•3 views

Malicious code in BitPay-Net (NuGet)

--- -= Per source details. Do not edit below this line.=-...

OSV•added 2024/06/25 1:27 p.m.•4 views

MAL-2024-4310 Malicious code in BitPay-Net (NuGet)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score

vulnersOsv•added 2024/05/14 3:32 p.m.•3 views

app.cash.lilbitcoinj:lilbitcoinj-core (>=0.0.2 <=0.0.3), app.cash.lninvoice:ln-invoice (>=0.0.2.1 <=0.0.4) +691 more potentially affected by CVE-2024-30172 via org.bouncycastle:bcprov-jdk15to18 (>=1.73 <=1.77)

org.bouncycastle:bcprov-jdk15to18 MAVEN version =1.73, =0.0.2, =0.0.2.1, =1.0.1, =2.1.0, =1.2.2, =0.9.1, =0.0.1, =3.1.2, =10.1.2, =0.0.27, =0.0.56, =1.5.2, =1.0.4, =1.8.6 and more Source cves: CVE-2024-30172 Source advisory: OSV:GHSA-M44J-CFRM-G8QC...

7.5CVSS6.7AI score0.00094EPSS

WPVulnDB•added 2023/11/23 12:0 a.m.•9 views

BitPay Checkout for WooCommerce < 5.0.0 - Missing Authorization

Description The BitPay Checkout for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on an unknown function in versions up to, and including, 4.1.0. This makes it possible for unauthenticated attackers to perform an unauthorized...

7AI score0.00176EPSS

Exploits0References1Affected Software1

Patchstack•added 2023/09/05 12:0 a.m.•6 views

WordPress BitPay Checkout for WooCommerce Plugin <= 4.1.0 is vulnerable to Broken Access Control

Software BitPay Checkout for WooCommerce Type Plugin Vulnerable versions = 4.1.0 Fixed in 5.0.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-41803 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 47a5398f9fa9 Credits Mika Required...

6.9AI score0.00176EPSS

Exploits0References2Affected Software1

OSSF Malicious Packages•added 2022/06/20 8:17 p.m.•2 views

Malicious code in pay-with-bitpay (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d6ebb5b5e2e2c9c966ed6bc7d57b453bf509a83fba50883992e0cd8b8773deb8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSV•added 2022/06/20 8:17 p.m.•9 views

MAL-2022-5234 Malicious code in pay-with-bitpay (npm)

OSV•added 2022/06/20 8:17 p.m.•8 views

MAL-2022-1594 Malicious code in bitpay-cordova-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c65a1f5a2711ae665b870cf63ffa85839dffa1c1acff19b1dad0fc07233dd05b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2022/06/20 8:17 p.m.•2 views

Malicious code in bitpay-cordova-sdk (npm)

OSV•added 2022/06/20 8:17 p.m.•3 views

MAL-2022-1595 Malicious code in bitpay-rest-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b359ec43ede6545e2db9641843726e67e66badd464b4f6c14f6f8f8c100615d6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2022/06/20 8:17 p.m.•2 views

Malicious code in bitpay-rest-client (npm)

vulnersOsv•added 2021/08/13 3:22 p.m.•3 views

com.baidu.xuper:xuper-java-sdk (>=0.1.0 <=0.2.0), com.bitpay:bitpay_sdk (>=5.0.2011 <=6.3.2109) +131 more potentially affected by CVE-2020-15522 via org.bouncycastle:bcprov-jdk15to18 (>=1.63 <=1.65)

org.bouncycastle:bcprov-jdk15to18 MAVEN version =1.63, =0.1.0, =5.0.2011, =0.1.0, =1.0.1, =0.2, =2.0.0, =0.1.0, =1.0.0, =0.3, =1.0.0-6, =2.1.0, =0.0.1, =0.0.2 and more Source cves: CVE-2020-15522 Source advisory: OSV:GHSA-6XX3-RG99-GC3P...

5.9CVSS6.7AI score0.00414EPSS