VYPR

Duitku Payment Gateway

by WordPress

CVEs (1)

  • CVE-2024-0631MedMar 13, 2024
    risk 0.35cvss 5.3epss 0.01

    The Duitku Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the check_duitku_response function in all versions up to, and including, 2.11.6. This makes it possible for unauthenticated attackers to change…