Vulnerabilities and security researches forgourl-bitcoin-payment-gateway-paid-downloads-membership gourl-bitcoin-payment-gateway-paid-downloads-membership

Jun 07, 2024

CVE, Research URL: CVE-2019-1010209
Home page URL: Security reports for GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership
Application: GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership
Date: Jul 23, 2019
Research Description: GoUrl.io GoURL Wordpress Plugin 1.4.13 and earlier is affected by: CWE-434. The impact is: unauthenticated/unzuthorized Attacker can upload executable file in website. The component is: gourl.php#L5637. The fixed version is: 1.4.14.
Affected versions: Min -, max -.
Status: vulnerable

Sep 07, 2025

CVE, Research URL: CVE-2025-48102
Home page URL: Security reports for GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership
Application: GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership
Date: Sep 05, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in gourl GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership allows Stored XSS. This issue affects GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership: from n/a through 1.6.6.
Affected versions: Min -, max -.
Status: vulnerable