2 matches found
CVE-2025-12392 Cryptocurrency Payment Gateway for WooCommerce <= 2.0.25 - Missing Authorization to Unauthenticated Tracking Status Update
The Cryptocurrency Payment Gateway for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'handleoptinoptout' function in all versions up to, and including, 2.0.25. This makes it possible for unauthenticated attackers to op...
PT-2025-47279
Name of the Vulnerable Software and Affected Versions Cryptocurrency Payment Gateway for WooCommerce plugin for WordPress versions through 2.0.22 Description The Cryptocurrency Payment Gateway for WooCommerce plugin for WordPress is susceptible to unauthorized data modification. This is due to a...