The Razorpay for WooCommerce plugin for WordPress is vulnerable to changes made without permission. This plugin is used on WordPress websites and versions 4.5.6 and below are affected. If someone with access to the website has the ability to subscribe to an account or higher, they can make changes to the plugin like updating, directing, creating, and reversing transfers.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
