A vulnerability was found in Redsys 3DSecure 2.0. It has been rated as problematic. This issue affects some unknown processing of the component 3DSMethod Authentication. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2024-25282. The attack may be initiated remotely. Furthermore, there is an exploit available.