Quick Paypal Payments Security Vulnerabilities and Issues — Quick Paypal Payments CVE List

Lucene search

FullworkspluginsQuick Paypal Payments

5 matches found

CVE•added 2024/12/09 1:15 p.m.•73 views

CVE-2023-25714

Missing Authorization vulnerability in Fullworks Quick Paypal Payments allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Quick Paypal Payments: from n/a through 5.7.25.

7.5CVSS7.5AI score0.00244EPSS

CVE•added 2023/05/02 8:15 a.m.•51 views

CVE-2023-1554

The Quick Paypal Payments WordPress plugin before 5.7.26.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)

4.8CVSS4.7AI score0.00075EPSS

CVE•added 2023/04/07 1:15 p.m.•39 views

CVE-2023-25702

Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin

5.9CVSS5AI score0.00058EPSS

CVE•added 2023/04/07 1:15 p.m.•36 views

CVE-2023-25713

Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin

7.1CVSS5.8AI score0.00083EPSS

CVE•added 2023/04/25 8:15 p.m.•35 views

CVE-2023-23889

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin

6.5CVSS5.3AI score0.00077EPSS