Security Advisory

CVE-2025-22661

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-21 17:21:51
Last updated 2026-04-28 16:11:04
Assigner Patchstack
State PUBLISHED

Description

Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability in vcita Online Payments – Get Paid with PayPal, Square & Stripe paypal-payment-button-by-vcita allows Stored XSS.This issue affects Online Payments – Get Paid with PayPal, Square & Stripe: from n/a through <= 3.20.0.