Lucene search
K

64 matches found

Patchstack
Patchstack
added 2025/12/31 12:0 a.m.4 views

WordPress Online Payments - Get Paid with PayPal, Square & Stripe plugin <= 3.20.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

WordPress Online Payments - Get Paid with PayPal, Square & Stripe plugin = 3.20.0 - Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Online Payments – Get Paid with PayPal, Square & Stripe versions = 3.20.0...

6.4CVSS5.3AI score0.00376EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-33896

Malicious code in bioql PyPI...

6.4CVSS6.6AI score0.00755EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-2900

Malicious code in bioql PyPI...

6.5CVSS8.7AI score0.00206EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-4514

Malicious code in bioql PyPI...

6.4CVSS9.2AI score0.00376EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-23178

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows attackers to validate online payments with a tokenized...

7.5CVSS7.1AI score0.00563EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.7 views

Malicious code in airwallex-online-payments-gateway (npm)

The package airwallex-online-payments-gateway was found to contain malicious code...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 11:42 a.m.5 views

CVE-2025-22661

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in vcita Online Payments – Get Paid with PayPal, Square & Stripe paypal-payment-button-by-vcita allows Stored XSS.This issue affects Online Payments – Get Paid with PayPal, Square & Stripe: from n/a...

6.5CVSS7.2AI score0.00206EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:48 a.m.17 views

CVE-2023-2407

The Event Registration Calendar By vcita plugin, versions up to and including 3.10.0, and Online Payments – Get Paid with PayPal, Square & Stripe plugin, for WordPress are vulnerable to Cross-Site Request Forgery. This is due to missing nonce validation in the lsparsevcitacallback function. This...

6.5CVSS6.7AI score0.00419EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:17 p.m.10 views

CVE-2021-23178

Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows attackers to validate online payments with a tokenized payment method that belongs to another user, causing the victim's payment method to be charged instead...

7.5CVSS6.7AI score0.00563EPSS
Exploits0References1
OSV
OSV
added 2025/02/18 8:15 a.m.6 views

CVE-2024-11895

The Online Payments – Get Paid with PayPal, Square & Stripe plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 3.20.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes...

5.4CVSS6AI score0.00376EPSS
Exploits0References6
NVD
NVD
added 2025/02/18 8:15 a.m.31 views

CVE-2024-11895

The Online Payments – Get Paid with PayPal, Square & Stripe plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 3.20.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes...

6.4CVSS0.00376EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/02/18 7:28 a.m.8 views

CVE-2024-11895 Online Payments – Get Paid with PayPal, Square & Stripe <= 3.20.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Online Payments – Get Paid with PayPal, Square & Stripe plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 3.20.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes...

6.4CVSS5.8AI score0.00376EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/02/18 7:28 a.m.32 views

CVE-2024-11895 Online Payments – Get Paid with PayPal, Square & Stripe <= 3.20.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Online Payments – Get Paid with PayPal, Square & Stripe plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 3.20.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes...

6.4CVSS0.00376EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/02/18 12:0 a.m.5 views

WordPress plugin Online Payments 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

6.4CVSS8.3AI score0.00376EPSS
Exploits0References8
NVD
NVD
added 2025/01/21 6:15 p.m.10 views

CVE-2025-22661

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in vcita Online Payments – Get Paid with PayPal, Square & Stripe paypal-payment-button-by-vcita allows Stored XSS.This issue affects Online Payments – Get Paid with PayPal, Square & Stripe: from n/a...

6.5CVSS0.00206EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/21 5:21 p.m.19 views

CVE-2025-22661 WordPress Online Payments plugin <= 3.20.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in vcita Online Payments – Get Paid with PayPal, Square & Stripe paypal-payment-button-by-vcita allows Stored XSS.This issue affects Online Payments – Get Paid with PayPal, Square & Stripe: from n/a...

6.5CVSS0.00206EPSS
Exploits0References1
CVE
CVE
added 2025/01/21 5:21 p.m.45 views

CVE-2025-22661

CVE-2025-22661 corresponds to an stored cross-site scripting (XSS) flaw in the WordPress plugin “Online Payments – Get Paid with PayPal, Square & Stripe” by vcita. The vulnerability is described as Stored XSS arising during web page generation, affecting versions from n/a up to and including 3.20...

6.5CVSS7.2AI score0.00206EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.2 views

WordPress plugin Online Payments 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

6.5CVSS7.8AI score0.00206EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/01/15 12:7 p.m.6 views

WordPress Online Payments plugin <= 3.20.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 Patchstack Alliance in WordPress Plugin Online Payments – Get Paid with PayPal, Square & Stripe versions = 3.20.0...

6.5CVSS6.1AI score0.00206EPSS
Exploits0Affected Software1
HackRead
HackRead
added 2024/11/22 5:13 p.m.7 views

Fraud Prevention in Online Payments: A Practical Guide

Learn how to prevent payment fraud with effective fraud detection, online prevention solutions, and secure payment orchestration strategies.…...

7.3AI score
Exploits0
Rows per page
Query Builder