Vulnerabilities and security researches fortotalprocessing-card-payments totalprocessing-card-payments

May 07, 2025

CVE, Research URL: CVE-2025-46486
Home page URL: Security reports for Total processing card payments for WooCommerce
Application: Total processing card payments for WooCommerce
Date: May 23, 2025
Research Description: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in totalprocessing Nomupay Payment Processing Gateway allows Path Traversal. This issue affects Nomupay Payment Processing Gateway: from n/a through 7.1.7.
Affected versions: max 7.1.7.
Status: vulnerable

Apr 18, 2025

CVE, Research URL: CVE-2025-32513
Home page URL: Security reports for Total processing card payments for WooCommerce
Application: Total processing card payments for WooCommerce
Date: Apr 17, 2025
Research Description: Total processing card payments for WooCommerce [totalprocessing-card-payments] < 7.1.7 CVE-2025-32513 [en] Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in totalprocessing Nomupay Payment Processing Gateway allows Reflected XSS. This issue affects Nomupay Payment Processing Gateway: from n/a through 7.1.6.
Affected versions: max 7.1.7.
Status: vulnerable

Apr 10, 2025

CVE, Research URL: CVE-2025-32209
Home page URL: Security reports for Total processing card payments for WooCommerce
Application: Total processing card payments for WooCommerce
Date: -
Research Description: Total processing card payments for WooCommerce [totalprocessing-card-payments] < 7.1.6 CVE-2025-32209
Affected versions: max 7.1.6.
Status: vulnerable