Paytium

Paytium

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2023-7294

  • EPSS 0.18%
  • Veröffentlicht 16.10.2024 07:15:15
  • Zuletzt bearbeitet 17.10.2024 17:34:31

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the create_mollie_profile function in versions up to, and including, 4.3.7. This makes it possible...

4.3

CVE-2023-7289

  • EPSS 0.13%
  • Veröffentlicht 16.10.2024 07:15:14
  • Zuletzt bearbeitet 17.10.2024 17:29:09

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized API key update due to a missing capability check on the paytium_sw_save_api_keys function in versions up to, and including, 4.3.7. This makes it possible...

4.3

CVE-2023-7290

  • EPSS 0.18%
  • Veröffentlicht 16.10.2024 07:15:14
  • Zuletzt bearbeitet 17.10.2024 17:30:19

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the check_for_verified_profiles function in versions up to, and including, 4.3.7. This makes it possi...

8.1

CVE-2023-7291

  • EPSS 0.34%
  • Veröffentlicht 16.10.2024 07:15:14
  • Zuletzt bearbeitet 17.10.2024 17:31:43

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the create_mollie_account function in versions up to, and including, 4.3.7. This makes it possi...

4.3

CVE-2023-7292

  • EPSS 0.19%
  • Veröffentlicht 16.10.2024 07:15:14
  • Zuletzt bearbeitet 17.10.2024 17:32:15

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized notification dismissal due to a missing capability check on the paytium_notice_dismiss function in versions up to, and including, 4.3.7. This makes it po...

4.3

CVE-2023-7293

  • EPSS 0.18%
  • Veröffentlicht 16.10.2024 07:15:14
  • Zuletzt bearbeitet 17.10.2024 17:33:08

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the check_mollie_account_details function in versions up to, and including, 4.3.7. This makes it poss...

5.4

CVE-2023-7287

  • EPSS 0.16%
  • Veröffentlicht 16.10.2024 07:15:13
  • Zuletzt bearbeitet 17.10.2024 17:28:07

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized subscription cancellation due to a missing capability check on the pt_cancel_subscription function in versions up to, and including, 4.3.7. This makes it...

4.3

CVE-2023-7288

  • EPSS 0.16%
  • Veröffentlicht 16.10.2024 07:15:13
  • Zuletzt bearbeitet 17.10.2024 17:27:10

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the update_profile_preference function in versions up to, and including, 4.3.7. This makes it poss...

5.4

CVE-2024-25099

  • EPSS 0.16%
  • Veröffentlicht 13.03.2024 16:15:29
  • Zuletzt bearbeitet 23.01.2025 18:58:35

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in David de Boer Paytium: Mollie payment forms & donations allows Stored XSS.This issue affects Paytium: Mollie payment forms & donations: from n/a thr...

4.8

CVE-2022-4042

Exploit
  • EPSS 0.23%
  • Veröffentlicht 26.12.2022 13:15:12
  • Zuletzt bearbeitet 12.04.2025 00:15:16

The Paytium: Mollie payment forms & donations WordPress plugin before 4.3.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltere...