cleantalk
Vulnerabilities and Security Researches

Robokassa payment gateway for Woocommerce, 460912a86cae6b7eebf28bf2d66b27d6b124510f

CVE, Research URL

460912a86cae6b7eebf28bf2d66b27d6b124510f

Home page URL

Security reports for Robokassa payment gateway for Woocommerce

Application

Robokassa payment gateway for Woocommerce

Published on
Apr 20, 2023
Research Description
Robokassa payment gateway for Woocommerce [robokassa] < 1.4.6 WordPress Robokassa payment gateway for Woocommerce Plugin <= 1.4.5 is vulnerable to Cross Site Scripting (XSS) Update the WordPress Robokassa payment gateway for Woocommerce plugin to the latest available version (at least 1.4.6). An unknown person discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Robokassa payment gateway for Woocommerce Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.4.6.
Affected versions
max 1.4.6.
Status
vulnerable
Previous vulnerability researches
Robokassa payment gateway for Woocommerce (CVE-2025-49958) , Nov 11, 2025
Robokassa payment gateway for Woocommerce (CVE-2024-47395) , Oct 03, 2024
Robokassa payment gateway for Woocommerce (460912a86cae6b7eebf28bf2d66b27d6b124510f) , Jun 07, 2024
New vulnerability
Flying Images (CVE-2025-11927) , Nov 11, 2025
Conversios – Google Analytics 4 (GA4), Meta Pixel & more Via Google Tag Manager For WooCommerce (CVE-2025-62925) , Nov 11, 2025
Visual Website Collaboration, Feedback &amp; Project Management &#8211; Atarim (CVE-2025-60188) , Nov 11, 2025
Visual Website Collaboration, Feedback &amp; Project Management &#8211; Atarim (CVE-2025-60187) , Nov 11, 2025
Visual Website Collaboration, Feedback &amp; Project Management &#8211; Atarim (CVE-2025-62895) , Nov 11, 2025