Gestpay For Woocommerce Security Vulnerabilities and Issues — Gestpay For Woocommerce CVE List

Lucene search

FabrickGestpay For Woocommerce

3 matches found

CVE•added 2024/02/28 9:15 a.m.•100 views

CVE-2024-0431

The Gestpay for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 20221130. This is due to missing or incorrect nonce validation on the 'ajax_set_default_card' function. This makes it possible for unauthenticated attackers to set the ...

4.3CVSS5.2AI score0.00156EPSS

CVE•added 2024/02/28 9:15 a.m.•89 views

CVE-2024-0433

The Gestpay for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 20221130. This is due to missing or incorrect nonce validation on the 'ajax_unset_default_card' function. This makes it possible for unauthenticated attackers to remove...

4.3CVSS5.2AI score0.00112EPSS

CVE•added 2024/02/28 9:15 a.m.•88 views

CVE-2024-0432

The Gestpay for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 20221130. This is due to missing or incorrect nonce validation on the 'ajax_delete_card' function. This makes it possible for unauthenticated attackers to delete the de...

4.3CVSS5.2AI score0.00079EPSS