CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Alipay Project: >> Alipay Security Vulnerabilities

CVE-2021-24390

A proid GET parameter of the WordPress支付宝Alipay|财付通Tenpay|贝宝PayPal集成插件 WordPress plugin through 3.7.2 is not sanitised, properly escaped or validated before inserting to a SQL statement not delimited by quotes, leading to SQL injection.

CVSS Score

7.2

EPSS Score

0.006

Published

2021-09-06

CVE-2014-4514

Cross-site scripting (XSS) vulnerability in includes/api_tenpay/inc.tenpay_notify.php in the Alipay plugin 3.6.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via vectors related to the getDebugInfo function.

CVSS Score

4.3

EPSS Score

0.002

Published

2014-10-21

Page 1

Vulnerabilities

Vulnerable Software

Alipay Project: >> Alipay Security Vulnerabilities

Products

Pricing

Contact Us