Wp Easypay Security Vulnerabilities and Issues — Wp Easypay CVE List

Lucene search

WpeasypayWp Easypay

4 matches found

CVE•added 2023/07/12 4:15 a.m.•74 views

CVE-2021-4411

The WP EasyPay – Square for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.2.0. This is due to missing or incorrect nonce validation on the wpep_download_transaction_in_excel() function. This makes it possible for unauthenticated attac...

4.3CVSS4.3AI score0.00146EPSS

CVE•added 2023/08/16 12:15 p.m.•42 views

CVE-2023-1465

The WP EasyPay WordPress plugin before 4.1 does not escape some generated URLs before outputting them back in pages, leading to Reflected Cross-Site Scripting issues which could be used against high privilege users such as admin

6.1CVSS6AI score0.00094EPSS

CVE•added 2023/05/25 10:15 a.m.•39 views

CVE-2022-47177

Cross-Site Request Forgery (CSRF) vulnerability in WP Easy Pay WP EasyPay – Square for WordPress plugin

8.8CVSS6.6AI score0.0006EPSS

CVE•added 2024/07/24 4:15 a.m.•37 views

CVE-2024-5861

The WP EasyPay – Square for WordPress plugin for WordPress is vulnerable to unauthorized modification of datadue to a missing capability check on the wpep_square_disconnect() function in all versions up to, and including, 4.2.3. This makes it possible for unauthenticated attackers to disconnect squ...

6.5CVSS5.2AI score0.00291EPSS