CVE-2024-30527

Name of the Vulnerable Software and Affected Versions WP Express Checkout (Accept PayPal Payments) versions through 2.3.7

Description The issue is related to improper validation of specified quantity in input, allowing manipulation of hidden fields. This can be exploited to manipulate the checkout process.

Recommendations For versions through 2.3.7, update to a version later than 2.3.7 to resolve the issue. At the moment, there is no information about other mitigation measures for this issue.