11 matches found
WordPress PeachPay — Payments & Express Checkout for WooCommerce (supports Stripe, PayPal, Square, Authorize.net, NMI) plugin <= 1.120.46 - Cross-Site Request Forgery to Stripe Unlink vulnerability
Cross-Site Request Forgery to Stripe Unlink vulnerability discovered by Benedictus Jovan aillesiM in WordPress Plugin PeachPay Payments versions = 1.120.46...
EUVD-2025-26536
Malicious code in bioql PyPI...
WordPress PeachPay Payments plugin <= 1.117.5 - Authenticated (Contributor+) SQL Injection via order_by Parameter vulnerability
Authenticated Contributor+ SQL Injection via orderby Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin PeachPay Payments versions = 1.117.5...
CVE-2025-58634
Missing Authorization vulnerability in peachpay PeachPay Payments peachpay-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PeachPay Payments: from n/a through = 1.117.4...
CVE-2025-58634
Missing Authorization vulnerability in peachpay PeachPay Payments peachpay-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PeachPay Payments: from n/a through = 1.117.4...
CVE-2025-58634 WordPress PeachPay Payments Plugin <= 1.117.4 - Broken Access Control Vulnerability
Missing Authorization vulnerability in peachpay PeachPay Payments peachpay-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PeachPay Payments: from n/a through = 1.117.4...
CVE-2025-58634
CVE-2025-58634 describes a Missing Authorization flaw in the PeachPay Payments WordPress plugin (WooCommerce integration) up to version 1.117.4. The issue arises from misconfigured access control levels, allowing exploitation of security boundaries. CVSS v3.1 base score 5.3 (Medium) with network ...
WordPress plugin PeachPay Payments 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
PT-2025-35764
Name of the Vulnerable Software and Affected Versions: PeachPay Payments versions n/a through 1.117.4 Description: A missing authorization flaw exists in PeachPay Payments, allowing exploitation of incorrectly configured access control security levels. Recommendations: Update PeachPay Payments to...
WordPress PeachPay Payments plugin <= 1.112.0 - Reflected Cross-Site Scripting vulnerability
Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin PeachPay Payments versions = 1.112.0...
WordPress PeachPay Payments Plugin <= 1.112.0 is vulnerable to Cross Site Scripting (XSS)
Software PeachPay Payments Type Plugin Vulnerable versions = 1.112.0 Fixed in 1.113.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-11362 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2ab27db02ed0 Credits vgo0 Requir...