Fullworksplugins Quick_paypal_payments

4 CVEs affecting Fullworksplugins Quick_paypal_payments. Latest disclosed: 2023-05-02. Critical: 0, High: 1.

Top CVEs affecting Fullworksplugins Quick_paypal_payments
CVESeverityScorePublishedSummary
CVE-2023-25713High7.12023-04-07Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 versions.
CVE-2023-23889Medium6.52023-04-25Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 versions.
CVE-2023-25702Medium5.92023-04-07Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 versions.
CVE-2023-1554Medium4.82023-05-02The Quick Paypal Payments WordPress plugin before 5.7.26.4 does not sanitise and escape some of its settings, which could allow high privilege users such as ad…