3 matches found
CVE-2019-20455
Gateways/Gateway.php in Heartland & Global Payments PHP SDK before 2.0.0 does not enforce SSL certificate validations...
thefairfieldcollection.co.uk Cross Site Scripting vulnerability OBB-3125054
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2019-20455
The CVE-2019-20455 entry affects the Heartland & Global Payments PHP SDK (Gateway.php) prior to version 2.0.0, where SSL certificate validation is not enforced. This can allow MITM-style interception of TLS traffic and exposure of sensitive data, as indicated by the CVE details and Red Hat/Veraco...