Home > plugin
woocommerce-plugin vulnerability-CVE-2019-7441-

WooCommerce PayPal Checkout Payment Gateway plugin 1.6.8 for WordPress allows Parameter Tampering in an amount parameter-CVE-2019-7441

# Exploit Title: cgi-bin/webscr?cmd=_cart in the WooCommerce PayPal Checkout Payment Gateway plugin 1.6.8 for WordPress allows Parameter Tampering in an amount parameter (such as amount_1), as demonstrated by purchasing an item for lower than the intended price # Date: 27.01.2019 # Product Title :Woocommerce Paypal gateway Plugin # Vendor Homepage: https://wordpress.org # Software Link : https://wordpress.org/plugins/woocommerce-gateway-paypal-express-checkout/ # Category: Web Applications Plugin (Wordpress) # Version: 1.6.8 # Active installations: 700,000+ # Exploit Author: Vikas Chaudhary # Contact: https://gkaim.com/contact-us/ # Web:

Read More