WordPress · Wp Express Checkout · CVE-2024-30527
**Name of the Vulnerable Software and Affected Versions**
WP Express Checkout (Accept PayPal Payments) versions through 2.3.7
**Description**
The issue is related to improper validation of specified quantity in input, allowing manipulation of hidden fields. This can be exploited to manipulate the checkout process.
**Recommendations**
For versions through 2.3.7, update to a version later than 2.3.7 to resolve the issue.
At the moment, there is no information about other mitigation measures for this issue.