13 matches found
EUVD-2022-5918
Malicious code in bioql PyPI...
CVE-2022-29254
silverstripe-omnipay is a SilverStripe integration with Omnipay PHP payments library. For a subset of Omnipay gateways those that use intermediary states like isNotification or isRedirect, if the payment identifier or success URL is exposed it is possible for payments to be prematurely marked as...
CVE-2022-29254
silverstripe-omnipay is a SilverStripe integration with Omnipay PHP payments library. For a subset of Omnipay gateways those that use intermediary states like isNotification or isRedirect, if the payment identifier or success URL is exposed it is possible for payments to be prematurely marked as...
Design/Logic Flaw
silverstripe-omnipay is a SilverStripe integration with Omnipay PHP payments library. For a subset of Omnipay gateways those that use intermediary states like isNotification or isRedirect, if the payment identifier or success URL is exposed it is possible for payments to be prematurely marked as...
silverstripe-omnipay 安全漏洞
silverstripe-omnipay is a SilverStripe integration with the Omnipay PHP payment library. A security vulnerability exists in silverstripe-omnipay, which stems from the fact that for a subset of Omnipay gateways, if a payment identifier or URL is successfully disclosed, a payment may be prematurely...
silverstripe-omnipay 安全漏洞
silverstripe-omnipay is a SilverStripe integration with the Omnipay PHP payment library. A security vulnerability exists in silverstripe-omnipay, which stems from the fact that for a subset of Omnipay gateways, if a payment identifier or URL is successfully disclosed, a payment may be prematurely...
Insecure Payment Verification
silverstripe/silverstripe-omnipay is vulnerable to insecure payment verification. An attacker is able to manipulate the payment process to prematurely mark it as payment completed without it in fact being carried out, when the payment identifier or success URL is exposed...
Failed payment recorded has completed in Silverstripe Omnipay
Impact For a subset of Omnipay gateways those that use intermediary states like isNotification or isRedirect, if the payment identifier or success URL is exposed it is possible for payments to be prematurely marked as completed without payment being taken. This is mitigated by the fact that most...
GHSA-48F2-M7JG-866X Failed payment recorded has completed in Silverstripe Omnipay
Impact For a subset of Omnipay gateways those that use intermediary states like isNotification or isRedirect, if the payment identifier or success URL is exposed it is possible for payments to be prematurely marked as completed without payment being taken. This is mitigated by the fact that most...
CVE-2022-29254 Failed payment recorded has completed in silverstripe/silverstripe-omnipay
silverstripe-omnipay is a SilverStripe integration with Omnipay PHP payments library. For a subset of Omnipay gateways those that use intermediary states like isNotification or isRedirect, if the payment identifier or success URL is exposed it is possible for payments to be prematurely marked as...
CVE-2022-29254
The CVE-2022-29254 issue affects silverstripe-omnipay (SilverStripe integration with Omnipay). For certain gateways using intermediary states (isNotification/isRedirect), exposing the payment identifier or success URL can cause payments to be prematurely marked as completed without payment actual...
CVE-2022-29254 Failed payment recorded has completed in silverstripe/silverstripe-omnipay
silverstripe-omnipay is a SilverStripe integration with Omnipay PHP payments library. For a subset of Omnipay gateways those that use intermediary states like isNotification or isRedirect, if the payment identifier or success URL is exposed it is possible for payments to be prematurely marked as...
CVE-2022-29254 Failed payment recorded has completed in silverstripe/silverstripe-omnipay
silverstripe-omnipay is a SilverStripe integration with Omnipay PHP payments library. For a subset of Omnipay gateways those that use intermediary states like isNotification or isRedirect, if the payment identifier or success URL is exposed it is possible for payments to be prematurely marked as...