PT-2026-8397 · WordPress+1 · Zarinpal Gateway For Woocommerce+1

Angus Girvan

Publicado

2026-02-17

Atualizado

2026-02-22

CVE-2026-2592

CVSS v3.1

7.7

Alta

Vetor

AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H

Name of the Vulnerable Software and Affected Versions Zarinpal Gateway for WooCommerce plugin versions prior to 5.0.17

Description The Zarinpal Gateway for WooCommerce plugin for WordPress has an issue with Improper Access Control to Payment Status Update. The payment callback handler Return from ZarinPal Gateway does not properly validate the authority token provided in the callback URL, ensuring it belongs to the specific order being marked as paid. This allows unauthenticated attackers to mark orders as paid without completing a legitimate payment by reusing a valid authority token from a different transaction of the same amount.

Recommendations Update the Zarinpal Gateway for WooCommerce plugin to version 5.0.17 or later.

Correção

Improper Access Control

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-284

Identificadores relacionados

CVE-2026-2592

Produtos afetados

Woocommerce

Zarinpal Gateway For Woocommerce

PT-2026-8397 · WordPress+1 · Zarinpal Gateway For Woocommerce+1

CVE-2026-2592

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 13