15 matches found
CVE-2025-14444
CVE-2025-14444 – RegistrationMagic for WordPress has a payment bypass vulnerability in the process_paypal_sdk_payment path. The issue arises from trusting client-supplied payment data without validating that PayPal payment actually completed, enabling unauthenticated users to activate registratio...
WordPress RegistrationMagic - Custom Registration Forms, User Registration, Payment, and User Login plugin <= 6.0.6.9 - Unauthenticated Payment Bypass via rm_process_paypal_sdk_payment vulnerability
WordPress RegistrationMagic - Custom Registration Forms, User Registration, Payment, and User Login plugin = 6.0.6.9 - Unauthenticated Payment Bypass via rmprocesspaypalsdkpayment vulnerability discovered by Md. Moniruzzaman Prodhan NomanProdhan - Knight Squad in WordPress Plugin RegistrationMagi...
CVE-2017-6217
paypal/adaptivepayments-sdk-php v3.9.2 is vulnerable to a reflected XSS in the SetPaymentOptions.php resulting code execution...
EUVD-2012-5667
Malware in sbrugna...
EUVD-2022-2035
Malicious code in bioql PyPI...
EUVD-2022-2686
Malicious code in bioql PyPI...
EUVD-2022-3439
Malicious code in bioql PyPI...
Malicious code in paypal-sdk-server-side-integration (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e7cbb479a86e79945f77f69a5ee3fa04d2ed76af23ea3bc9de04b02ed5cc0b4d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2047 Malicious code in paypal-sdk-server-side-integration (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e7cbb479a86e79945f77f69a5ee3fa04d2ed76af23ea3bc9de04b02ed5cc0b4d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-4612 Malicious code in PayРal.SDK.NETCоre (NuGet)
--- -= Per source details. Do not edit below this line.=-...
MAL-2022-5244 Malicious code in paypal-sdk-e2e-tests (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fbf78f6e3c0804dd208733f5a6a2c666614467a873d68214580d2f183b1dc35f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in paypal-sdk-spec (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 641111da134e219b032f3fdca4837630c098df34fc322c1d5f6bd41310c85974 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5245 Malicious code in paypal-sdk-spec (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 641111da134e219b032f3fdca4837630c098df34fc322c1d5f6bd41310c85974 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2017-6217
paypal/adaptivepayments-sdk-php v3.9.2 is vulnerable to a reflected XSS in the SetPaymentOptions.php resulting code execution...
CVE-2017-6099
Cross-site scripting XSS vulnerability in GetAuthDetails.html.php in PayPal PHP Merchant SDK aka merchant-sdk-php 3.9.1 allows remote attackers to inject arbitrary web script or HTML via the token parameter...