Main Vulnerability Database Exploits ID:5938 - Exploit for Security restrictions bypass in WooCommerce PayPal Checkout Payment Gateway - CVE-2019-7441

ID:5938 - Exploit for Security restrictions bypass in WooCommerce PayPal Checkout Payment Gateway - CVE-2019-7441

Published: June 17, 2021

Vulnerability identifier: #VU19046

Vulnerability risk: Medium

CVE-ID: CVE-2019-7441

CWE-ID: CWE-471

Exploitation vector: Remote access

Vulnerable software:
WooCommerce PayPal Checkout Payment Gateway

Link to public exploit:

https://www.exploit-db.com/exploits/46632/

Vulnerability description

The vulnerability allows a remote attacker to bypass certain security restrictions.

The vulnerability exists due to application does not perform validation of the attacker-controlled data, assuming that data is valid and safe. A remote attacker can tamper with parameters, passed to the application, and change its flow, e.g. purchase and item for lower price.

Remediation

Install updates from vendor's website.

ID:5938 - Exploit for Security restrictions bypass in WooCommerce PayPal Checkout Payment Gateway - CVE-2019-7441

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human