Security Advisory

CVE-2020-11497

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-08-26 18:25:23
Last updated 2024-08-04 11:35:12
Assigner mitre
State PUBLISHED

Description

An issue was discovered in the NAB Transact extension 2.1.0 for the WooCommerce plugin for WordPress. An online payment system bypass allows orders to be marked as fully paid by assigning an arbitrary bank transaction ID during the payment-details entry step.