CVE-2024-0626 | WooCommerce Clover Payment Gateway Plugin up to 1.3.1 on WordPress callback_handler authorization

Posted by Angelo Barbosa | Mar 22, 2024 | CVE

A vulnerability was found in WooCommerce Clover Payment Gateway Plugin up to 1.3.1 on WordPress and classified as critical. Affected by this issue is the function callback_handler. The manipulation leads to missing authorization.

This vulnerability is handled as CVE-2024-0626. The attack may be launched remotely. There is no exploit available.

CVE-2024-0626 | WooCommerce Clover Payment Gateway Plugin up to 1.3.1 on WordPress callback_handler authorization

Related Posts

CVE-2024-43906 | Linux Kernel up to 6.6.45/6.10.4 DRM null pointer dereference (641dac64178c/4fd52f7c2c11/030ffd4d43b4)

CVE-2023-42949 | Apple iOS/iPadOS Temporary Directory access control

CVE-2024-6167 | aprokopenko Just Custom Fields Plugin up to 3.3.2 on WordPress authorization

CVE-2024-1317 | Feedzy RSS Aggregator up to 4.4.2 on WordPress sql injection