1 results (0.004 seconds)

CVSS: 5.3EPSS: %CPEs: 1EXPL: 0

The PayTR Taksit Tablosu plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on one of the paytr_installment_tab_content_ajax function in versions up to, and including, 1.3.1. This makes it possible for unauthenticated attackers to update plugin settings. • CWE-862: Missing Authorization •