Lucene search
K
AmazonPayfort-php-sdk

5 matches found

CVE
CVE
added 2018/11/14 7:0 a.m.51 views

CVE-2018-19188

The CVE-2018-19188 entry concerns the Amazon PAYFORT payfort-php-SDK (pre-2018-04-26) with an XSS flaw exploitable through the success.php fort_id parameter. Connected records (NVD, CVE List, CNVD, PRION, CVELIST) corroborate the same description. The documents do not provide explicit remediation...

6.1CVSS6AI score0.01516EPSS
CVE
CVE
added 2018/11/14 7:0 a.m.49 views

CVE-2018-19187

The CVE-2018-19187 entry concerns the Amazon PAYFORT payfort-php-SDK (payment gateway SDK) with an XSS flaw present through 2018-04-26. The root cause is mishandling of an arbitrary parameter name or value in a success.php echo statement, enabling cross-site scripting. Documents identify the affe...

6.1CVSS6AI score0.00864EPSS
CVE
CVE
added 2018/11/14 7:0 a.m.48 views

CVE-2018-19189

The CVE-2018-19189 entry concerns the Amazon PAYFORT payfort-php-SDK (up to 2018-04-26) and a cross-site scripting (XSS) condition caused by mishandling an arbitrary parameter name or value in an error.php echo statement. The vulnerability is described in the NVD entry as an XSS risk with a CVSS ...

6.1CVSS6AI score0.00864EPSS
CVE
CVE
added 2018/11/14 7:0 a.m.44 views

CVE-2018-19186

CVE-2018-19186 concerns the Amazon PAYFORT payfort-php-SDK (payment gateway SDK) through 2018-04-26, where a cross-site scripting (XSS) flaw exists in the route.php paymentMethod parameter. The vulnerability is evidenced in NVD and corroborated by multiple sources (CNVD/CVE records). Affected com...

6.1CVSS6AI score0.00675EPSS
CVE
CVE
added 2018/11/14 7:0 a.m.41 views

CVE-2018-19190

The CVE-2018-19190 entry concerns the Amazon PAYFORT payfort-php-SDK payment gateway, with an XSS vulnerability exploitable via the error.php error_msg parameter in versions up to 2018-04-26. The NVD notes CVSS v2 base score 4.3 (Medium) and CVSS v3.0 base score 6.1 (Medium). Exploitation details...

6.1CVSS6AI score0.00843EPSS