VYPR

Piraeus Bank Woocommerce Payment Gateway

by Papaki

CVEs (1)

  • CVE-2024-0610CriFeb 17, 2024
    risk 0.64cvss 9.8epss 0.01

    The Piraeus Bank WooCommerce Payment Gateway plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'MerchantReference' parameter in all versions up to, and including, 1.6.5.1 due to insufficient escaping on the user supplied parameter and lack of…