Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:15 a.m.9 views

CVE-2022-29254

silverstripe-omnipay is a SilverStripe integration with Omnipay PHP payments library. For a subset of Omnipay gateways those that use intermediary states like isNotification or isRedirect, if the payment identifier or success URL is exposed it is possible for payments to be prematurely marked as...

6.5CVSS6.5AI score0.00618EPSS
Exploits0References1
CVE
CVE
added 2022/06/06 7:35 p.m.97 views

CVE-2022-29254

The CVE-2022-29254 issue affects silverstripe-omnipay (SilverStripe integration with Omnipay). For certain gateways using intermediary states (isNotification/isRedirect), exposing the payment identifier or success URL can cause payments to be prematurely marked as completed without payment actual...

6.5CVSS5.1AI score0.00618EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/06/06 7:35 p.m.5 views

CVE-2022-29254 Failed payment recorded has completed in silverstripe/silverstripe-omnipay

silverstripe-omnipay is a SilverStripe integration with Omnipay PHP payments library. For a subset of Omnipay gateways those that use intermediary states like isNotification or isRedirect, if the payment identifier or success URL is exposed it is possible for payments to be prematurely marked as...

3.7CVSS6.3AI score0.00618EPSS
Exploits0References2
Friends Of PHP
Friends Of PHP
added 2022/05/25 11:11 a.m.19 views

CVE-2022-29254 - Failed payment recorded has completed

More info at https://www.silverstripe.org/download/security-releases/cve-2022-29254...

6.5CVSS7.2AI score0.00618EPSS
Exploits0Affected Software1
Rows per page
Query Builder