← Back

Payu India Payment Gateway

payu_india_payment_gateway

Vendor: Woocommerce • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-27193
1Woocommerce
1Payu India Payment Gateway
Apr 23, 2026
Mar 15, 2024
N/A· v4
6.1 MEDIUM· v3
N/A· v2
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PayU India PayU India payu-india allows DOM-Based XSS.This issue affects PayU India: from n/a through <= 3.8.8.
CVE-2019-14978
1Woocommerce
1Payu India Payment Gateway
Nov 21, 2024
Aug 29, 2019
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
/payu/icpcheckout/ in the WooCommerce PayU India Payment Gateway plugin 2.1.1 for WordPress allows Parameter Tampering in the purchaseQuantity=1 parameter, as demonstrated by purchasing an item for lower than the intende...Show more
/payu/icpcheckout/ in the WooCommerce PayU India Payment Gateway plugin 2.1.1 for WordPress allows Parameter Tampering in the purchaseQuantity=1 parameter, as demonstrated by purchasing an item for lower than the intended price.Show less