CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Getnet Argentina Para Woocommerce Project: Security Vulnerabilities

CVE-2023-3525

The Getnet Argentina para Woocommerce plugin for WordPress is vulnerable to authorization bypass due to missing validation on the 'webhook' function in versions up to, and including, 0.0.4. This makes it possible for unauthenticated attackers to set their payment status to 'APPROVED' without payment.

CVSS Score

7.5

EPSS Score

0.001

Published

2023-07-12

Page 1

Vulnerabilities

Vulnerable Software

Getnet Argentina Para Woocommerce Project: Security Vulnerabilities

Products

Pricing

Contact Us