cleantalk
Vulnerabilities and Security Researches

ABA PayWay Payment Gateway for WooCommerce, CVE-2025-32586

CVE, Research URL

CVE-2025-32586

Home page URL

Security reports for ABA PayWay Payment Gateway for WooCommerce

Application

ABA PayWay Payment Gateway for WooCommerce

Published on
Apr 11, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ABA Bank ABA PayWay Payment Gateway for WooCommerce allows Reflected XSS. This issue affects ABA PayWay Payment Gateway for WooCommerce: from n/a through 2.1.3.
Affected versions
Min -, max 2.1.4.
Status
vulnerable
Previous vulnerability researches
Salon booking system (CVE-2025-31560) , Apr 04, 2025
Salon booking system (CVE-2024-37231) , Jun 25, 2024
Salon booking system (CVE-2022-4974) , Nov 15, 2024
Salon booking system (CVE-2024-9882) , Nov 17, 2024
Salon booking system (CVE-2024-4468) , Jun 10, 2024
New vulnerability
Lock Your Updates Plugins/Themes Manager (CVE-2025-32537) , Apr 13, 2025
Neon Product Designer (CVE-2025-32565) , Apr 13, 2025
Flexi – Guest Submit (CVE-2025-32589) , Apr 13, 2025
Interactive Geo Maps (CVE-2025-32525) , Apr 13, 2025
Twispay Credit Card Payments (CVE-2025-32601) , Apr 13, 2025