Security Advisory

CVE-2024-5861

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-24 03:17:16

Last updated 2026-04-08 16:49:20

Assigner Wordfence

State PUBLISHED

Description

The WP EasyPay – Square for WordPress plugin for WordPress is vulnerable to unauthorized modification of datadue to a missing capability check on the wpep_square_disconnect() function in all versions up to, and including, 4.2.3. This makes it possible for unauthenticated attackers to disconnect square.

← Browse all CVEs View on cve.org ↗