EUVD-2024-42571

Malicious code in bioql PyPI...

CVE-2024-47646

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in tomlister Payflex Payment Gateway payflex-payment-gateway.This issue affects Payflex Payment Gateway: from n/a through = 2.6.1...

CVE-2024-0619

The Payflex Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the paymentcallback function in all versions up to, and including, 2.5.0. This makes it possible for unauthenticated attackers to update the status of orders,...

CVE-2024-47646

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in tomlister Payflex Payment Gateway payflex-payment-gateway.This issue affects Payflex Payment Gateway: from n/a through = 2.6.1...

CVE-2024-47646 WordPress Payflex Payment Gateway plugin <= 2.6.1 - Open Redirection vulnerability

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Payflex Payflex Payment Gateway.This issue affects Payflex Payment Gateway: from n/a through 2.6.1...

CVE-2024-47646

CVE-2024-47646 affects the Payflex Payment Gateway WordPress plugin (versions

CVE-2024-47646 WordPress Payflex Payment Gateway plugin <= 2.6.1 - Open Redirection vulnerability

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in tomlister Payflex Payment Gateway payflex-payment-gateway.This issue affects Payflex Payment Gateway: from n/a through = 2.6.1...

PT-2024-32704 · Unknown · Payflex Payment Gateway

Name of the Vulnerable Software and Affected Versions: Payflex Payment Gateway versions through 2.6.1 Description: The issue is an 'Open Redirect' vulnerability, which allows URL redirection to untrusted sites. This vulnerability affects Payflex Payment Gateway. Recommendations: For Payflex Payme...

WordPress plugin Payflex Payment Gateway 输入验证错误漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An input validation error...

WordPress Payflex Payment Gateway plugin <= 2.6.1 - Open Redirection vulnerability

Open Redirection vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin Payflex Payment Gateway versions = 2.6.1...

WordPress Payflex Payment Gateway Plugin <= 2.6.1 is vulnerable to Open Redirection

Software Payflex Payment Gateway Type Plugin Vulnerable versions = 2.6.1 Fixed in 2.6.2 OWASP Top 10 A3: Injection Classification Open Redirection CVE CVE-2024-47646 Patch priority Low CVSS severity Low 4.7 Developer Claim ownership PSID ac682bcd42a4 Credits Muhamad Agil Fachrian Required privile...

WordPress Payflex Payment Gateway plugin <= 2.5.0 - Missing Authorization to Order Status Update vulnerability

Missing Authorization to Order Status Update vulnerability discovered by Francesco Carlucci in WordPress Plugin Payflex Payment Gateway versions = 2.5.0...

CVE-2024-0619

The Payflex Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the paymentcallback function in all versions up to, and including, 2.5.0. This makes it possible for unauthenticated attackers to update the status of orders,...

CVE-2024-0619 Payflex Payment Gateway <= 2.5.0 - Missing Authorization to Order Status Update

The Payflex Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the paymentcallback function in all versions up to, and including, 2.5.0. This makes it possible for unauthenticated attackers to update the status of orders,...

CVE-2024-0619

CVE-2024-0619 concerns the Payflex Payment Gateway WordPress plugin, where a missing capability check in payment_callback() in all versions up to and including 2.5.0 permits unauthenticated modification of order status. The NVD description notes unauthorized data modification could lead to revenu...

WordPress Payflex Payment Gateway Plugin <= 2.5.0 is vulnerable to Broken Access Control

Software Payflex Payment Gateway Type Plugin Vulnerable versions = 2.5.0 Fixed in 2.6.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-0619 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID acb69f184f3c Credits Francesco Carlucci...

WordPress plugin Payflex Payment Gateway security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in th...