Skip to main content

Paymoney

3 CVEs product

Monthly

CVE-2022-37140 HIGH POC This Week

PayMoney 3.3 is vulnerable to Client Side Remote Code Execution (RCE). Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE File Upload Paymoney
NVD GitHub
CVSS 3.1
8.0
EPSS
1.3%
CVE-2022-37137 MEDIUM POC This Month

PayMoney 3.3 is vulnerable to Stored Cross-Site Scripting (XSS) during replying the ticket. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Paymoney
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2022-34991 MEDIUM POC This Month

Paymoney v3.3 was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities via the first_name and last_name parameters. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Paymoney
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
EPSS 1% CVSS 8.0
HIGH POC This Week

PayMoney 3.3 is vulnerable to Client Side Remote Code Execution (RCE). Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE File Upload Paymoney
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM POC This Month

PayMoney 3.3 is vulnerable to Stored Cross-Site Scripting (XSS) during replying the ticket. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Paymoney
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM POC This Month

Paymoney v3.3 was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities via the first_name and last_name parameters. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Paymoney
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy