exploitDog

GHSA-mfrp-4p9c-pp98

Опубликовано: 17 июн. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Cross-Site Request Forgery (CSRF) vulnerability in YITHEMES YITH PayPal Express Checkout for WooCommerce allows Cross Site Request Forgery. This issue affects YITH PayPal Express Checkout for WooCommerce: from n/a through 1.49.0.

Cross-Site Request Forgery (CSRF) vulnerability in YITHEMES YITH PayPal Express Checkout for WooCommerce allows Cross Site Request Forgery. This issue affects YITH PayPal Express Checkout for WooCommerce: from n/a through 1.49.0.

Ссылки

EPSS

Процентиль: 2%

0.00015

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2025-48111

CVSS3: 4.3

nvd

8 месяцев назад

Cross-Site Request Forgery (CSRF) vulnerability in YITHEMES YITH PayPal Express Checkout for WooCommerce allows Cross Site Request Forgery. This issue affects YITH PayPal Express Checkout for WooCommerce: from n/a through 1.49.0.

EPSS

Процентиль: 2%

0.00015

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352