VYPR

Razorpay for WooCommerce

by WordPress

CVEs (1)

  • CVE-2025-14294MedFeb 19, 2026
    risk 0.34cvss 5.3epss 0.00

    The Razorpay for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the getCouponList() function in all versions up to, and including, 4.7.8. This is due to the checkAuthCredentials() permission callback…