Lucene search
K

11 matches found

Patchstack
Patchstack
added 2026/05/27 6:40 p.m.10 views

WordPress PeachPay — Payments & Express Checkout for WooCommerce (supports Stripe, PayPal, Square, Authorize.net, NMI) plugin <= 1.120.46 - Cross-Site Request Forgery to Stripe Unlink vulnerability

Cross-Site Request Forgery to Stripe Unlink vulnerability discovered by Benedictus Jovan aillesiM in WordPress Plugin PeachPay Payments versions = 1.120.46...

4.3CVSS5.8AI score0.00138EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-26536

Malicious code in bioql PyPI...

5.3CVSS6.4AI score0.00209EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/09 11:56 p.m.4 views

WordPress PeachPay Payments plugin <= 1.117.5 - Authenticated (Contributor+) SQL Injection via order_by Parameter vulnerability

Authenticated Contributor+ SQL Injection via orderby Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin PeachPay Payments versions = 1.117.5...

6.5CVSS8AI score0.00287EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/09/05 3:22 p.m.4 views

CVE-2025-58634

Missing Authorization vulnerability in peachpay PeachPay Payments peachpay-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PeachPay Payments: from n/a through = 1.117.4...

5.3CVSS5.9AI score0.00209EPSS
Exploits0References1
NVD
NVD
added 2025/09/03 3:15 p.m.14 views

CVE-2025-58634

Missing Authorization vulnerability in peachpay PeachPay Payments peachpay-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PeachPay Payments: from n/a through = 1.117.4...

5.3CVSS0.00209EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/03 2:36 p.m.3 views

CVE-2025-58634 WordPress PeachPay Payments Plugin <= 1.117.4 - Broken Access Control Vulnerability

Missing Authorization vulnerability in peachpay PeachPay Payments peachpay-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PeachPay Payments: from n/a through = 1.117.4...

5.3CVSS5.9AI score0.00209EPSS
Exploits0References1
CVE
CVE
added 2025/09/03 2:36 p.m.11 views

CVE-2025-58634

CVE-2025-58634 describes a Missing Authorization flaw in the PeachPay Payments WordPress plugin (WooCommerce integration) up to version 1.117.4. The issue arises from misconfigured access control levels, allowing exploitation of security boundaries. CVSS v3.1 base score 5.3 (Medium) with network ...

5.3CVSS5.9AI score0.00209EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/03 12:0 a.m.5 views

PT-2025-35764

Name of the Vulnerable Software and Affected Versions: PeachPay Payments versions n/a through 1.117.4 Description: A missing authorization flaw exists in PeachPay Payments, allowing exploitation of incorrectly configured access control security levels. Recommendations: Update PeachPay Payments to...

5.3CVSS6.3AI score0.00209EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/03 12:0 a.m.3 views

WordPress plugin PeachPay Payments 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

5.3CVSS6.4AI score0.00209EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/11/22 9:24 p.m.3 views

WordPress PeachPay Payments plugin <= 1.112.0 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin PeachPay Payments versions = 1.112.0...

6.1CVSS6.3AI score0.00437EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/11/22 12:0 a.m.12 views

WordPress PeachPay Payments Plugin <= 1.112.0 is vulnerable to Cross Site Scripting (XSS)

Software PeachPay Payments Type Plugin Vulnerable versions = 1.112.0 Fixed in 1.113.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-11362 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2ab27db02ed0 Credits vgo0 Requir...

6.1CVSS5.7AI score0.00437EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder