Skip to main content

Tranzware E Commerce Payment Gateway

2 CVEs product

Monthly

CVE-2021-28126 MEDIUM This Month

index.jsp in TranzWare e-Commerce Payment Gateway (TWEC PG) before 3.1.27.5 had a Stored cross-site scripting (XSS) vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Tranzware E Commerce Payment Gateway
NVD GitHub
CVSS 3.1
6.1
EPSS
0.6%
CVE-2021-28110 HIGH This Week

/exec in TranzWare e-Commerce Payment Gateway (TWEC PG) before 3.1.27.5 had a vulnerability in its XML parser. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XXE Tranzware E Commerce Payment Gateway
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
EPSS 1% CVSS 6.1
MEDIUM This Month

index.jsp in TranzWare e-Commerce Payment Gateway (TWEC PG) before 3.1.27.5 had a Stored cross-site scripting (XSS) vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Tranzware E Commerce Payment Gateway
NVD GitHub
EPSS 1% CVSS 7.5
HIGH This Week

/exec in TranzWare e-Commerce Payment Gateway (TWEC PG) before 3.1.27.5 had a vulnerability in its XML parser. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XXE Tranzware E Commerce Payment Gateway
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy