2 matches found
CVE-2024-53759
CVE-2024-53759 refers to a CSRF to Stored Cross‑Site Scripting (XSS) vulnerability in the WordPress plugin “ArCa Payment Gateway” (versions 1.3.1 and earlier). The issue arises from improper input neutralization during web page generation, enabling stored XSS. Affected software is the ArCa Paymen...
CVE-2024-53759 WordPress ArCa Payment Gateway plugin <= 1.3.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Planet Studio ArCa Payment Gateway arca-payment-gateway allows Stored XSS.This issue affects ArCa Payment Gateway: from n/a through = 1.3.1...