PT-2026-44189 · WordPress · Easy Digital Downloads
Published
2026-05-28
·
Updated
2026-05-28
·
CVE-2026-7533
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Easy Digital Downloads versions prior to 3.6.8
Description
The Easy Digital Downloads plugin for WordPress is subject to Cross-Site Request Forgery (CSRF), a flaw where an attacker tricks a victim into performing actions they did not intend to. The issue exists in the
handle oauth redirect() function, which is registered on the admin init hook. This function processes Square OAuth tokens from a user-supplied GET parameter without performing nonce verification (a security token used to ensure requests are intentional). Consequently, unauthenticated attackers can overwrite the store's Square payment gateway credentials by inducing a logged-in administrator to click a specially crafted link, which may lead to payment account hijacking.Recommendations
Update to version 3.6.8 or later.
As a temporary workaround, restrict administrator access to the
handle oauth redirect() function or the admin init hook processing Square OAuth tokens until the update is applied.Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Easy Digital Downloads