Vulnerabilities (CVE)

Filtered by vendor Codepeople Subscribe
Filtered by product Payment Form For Paypal Pro
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-7666 1 Codepeople 1 Payment Form For Paypal Pro 2024-02-28 4.3 MEDIUM 6.1 MEDIUM
Multiple cross-site scripting (XSS) vulnerabilities in the (1) cp_updateMessageItem and (2) cp_deleteMessageItem functions in cp_ppp_admin_int_message_list.inc.php in the Payment Form for PayPal Pro plugin before 1.0.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the cal parameter.