cleantalk
Vulnerabilities and Security Researches

WP EasyPay – Square for WordPress, CVE-2026-56024

CVE, Research URL

CVE-2026-56024

Home page URL

Security reports for WP EasyPay – Square for WordPress

Application

WP EasyPay – Square for WordPress

Published on
Jun 18, 2026
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Saad Iqbal WP EasyPay allows Cross Site Request Forgery. This issue affects WP EasyPay: from n/a through 4.4.0.
Affected versions
max 4.4.0.
Status
vulnerable
Previous vulnerability researches
Database for Contact Form 7, WPforms, Elementor forms (462d567f3ad1d318c2c19fe5babcbb2da51728f0) , Jun 16, 2026
Database for Contact Form 7, WPforms, Elementor forms (812c6844fd3d1e7de7c42fe60d7dfd9ba739d775) , Jun 16, 2026
Database for Contact Form 7, WPforms, Elementor forms (69175ef9b4291e401fd0d6b24d5d905a4e862a64) , Jun 16, 2026
Database for Contact Form 7, WPforms, Elementor forms (56cb8480-1791-4990-8fc7-2cb98a10c207) , Jun 16, 2026
Database for Contact Form 7, WPforms, Elementor forms (78da7e4ebf17bf04d89df5a7a7492deb53506a60) , Jun 16, 2026
New vulnerability
Classified Listing – Classified ads & Business Directory Plugin (CVE-2026-10779) , Jun 21, 2026
WP EasyPay – Square for WordPress (CVE-2026-56024) , Jun 20, 2026
Database for Contact Form 7, WPforms, Elementor forms (CVE-2026-9843) , Jun 20, 2026
WP Go Maps (formerly WP Google Maps) (CVE-2026-12238) , Jun 20, 2026
Media Library Assistant (CVE-2026-56012) , Jun 20, 2026