5 matches found
WordPress PayPal Pro <1.1.65 - SQL Injection
WordPress PayPal Pro plugin before 1.1.65 is susceptible to SQL injection via the 'query' parameter which allows for any unauthenticated user to perform SQL queries with the results output to a web page in JSON format. id: CVE-2020-14092 info: name: WordPress PayPal Pro 1.1.65 - SQL Injection...
CVE-2020-14092
The CodePeople Payment Form for PayPal Pro plugin before 1.1.65 for WordPress allows SQL Injection...
CVE-2020-14092
The CodePeople Payment Form for PayPal Pro plugin before 1.1.65 for WordPress allows SQL Injection...
CVE-2020-14092
Summary: CVE-2020-14092 affects the WordPress plugin “CodePeople Payment Form for PayPal Pro” up to version 1.1.65. The vulnerability is an SQL injection via the vulnerable plugin’s query parameter, allowing unauthenticated attackers to execute arbitrary SQL and have results output in JSON. The C...
CVE-2020-14092
The CodePeople Payment Form for PayPal Pro plugin before 1.1.65 for WordPress allows SQL Injection...