Vulnerabilities > Yanco > Woocommerce CVR Payment Gateway > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-09-14 CVE-2023-4948 Unspecified vulnerability in Yanco Woocommerce CVR Payment Gateway 6.1.0
The WooCommerce CVR Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the refresh_order_cvr_data AJAX action in versions up to 6.1.0.
network
low complexity
yanco
4.3