Skip to main content

Piraeus Bank Woocommerce Payment Gateway

1 CVEs product

Monthly

CVE-2024-0610 CRITICAL PATCH Act Now

The Piraeus Bank WooCommerce Payment Gateway plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'MerchantReference' parameter in all versions up to, and including, 1.6.5.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

SQLi WordPress Piraeus Bank Woocommerce Payment Gateway
NVD VulDB
CVSS 3.1
9.8
EPSS
0.5%
EPSS 0% CVSS 9.8
CRITICAL PATCH Act Now

The Piraeus Bank WooCommerce Payment Gateway plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'MerchantReference' parameter in all versions up to, and including, 1.6.5.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

SQLi WordPress Piraeus Bank Woocommerce Payment Gateway
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy