Woocommerce: >> Payu India Payment Gateway >> 2.1.1 Security Vulnerabilities
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PayU PayU India allows Reflected XSS.This issue affects PayU India: from n/a through 3.8.2.
CVSS Score
7.1
EPSS Score
0.001
Published
2024-03-15
/payu/icpcheckout/ in the WooCommerce PayU India Payment Gateway plugin 2.1.1 for WordPress allows Parameter Tampering in the purchaseQuantity=1 parameter, as demonstrated by purchasing an item for lower than the intended price.
CVSS Score
5.3
EPSS Score
0.002
Published
2019-08-29