Headline
CVE-2023-4948: WooCommerce CVR Payment Gateway Subscription - Yan&Co Plugins
The WooCommerce CVR Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the refresh_order_cvr_data AJAX action in versions up to 6.1.0. This makes it possible for authenticated attackers with contributor-level access and above, to update CVR numbers for orders.
Forside / WooCommerce CVR Payment Gateway Subscription
Fra: € 48,61 incl. VAT / år
Varenummer (SKU): cvr-subscription
- Beskrivelse
- Anmeldelser (0)
WooCommerce CVR Payment Gateway enables your store to receive orders with valid Danish CVR numbers as those used by companies, public Institutions and municipalities.
The plugin can validate the entered CVR number with CVR Registeret and thus you can make sure that no orders are placed in your shop with Danish CVR numbers that aren’t valid.
Læs mere om WooCommerce CVR Betaling her (på Dansk)