Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin WooCommerce-GloBee Payment Gateway Security Bypass - CVE-2018-20782 - Vulnerability Database
WP Plugin Globee Woocommerce Payment Api

WordPress Plugin WooCommerce-GloBee Payment Gateway Security Bypass - CVE-2018-20782

Medium
Reference: CVE-2018-20782
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-20782
Title: WordPress Plugin WooCommerce-GloBee Payment Gateway Security Bypass
Overview:

WordPress Plugin WooCommerce-GloBee Payment Gateway is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently bypass payment process and spoof real order status without actually paying for it. WordPress Plugin WooCommerce-GloBee Payment Gateway version 1.1.1 is vulnerable prior versions may also be affected.