PT-2026-44189 · WordPress · Easy Digital Downloads

Published

2026-05-28

·

Updated

2026-05-28

·

CVE-2026-7533

CVSS v3.1

4.3

Medium

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Name of the Vulnerable Software and Affected Versions Easy Digital Downloads versions prior to 3.6.8
Description The Easy Digital Downloads plugin for WordPress is subject to Cross-Site Request Forgery (CSRF), a flaw where an attacker tricks a victim into performing actions they did not intend to. The issue exists in the handle oauth redirect() function, which is registered on the admin init hook. This function processes Square OAuth tokens from a user-supplied GET parameter without performing nonce verification (a security token used to ensure requests are intentional). Consequently, unauthenticated attackers can overwrite the store's Square payment gateway credentials by inducing a logged-in administrator to click a specially crafted link, which may lead to payment account hijacking.
Recommendations Update to version 3.6.8 or later. As a temporary workaround, restrict administrator access to the handle oauth redirect() function or the admin init hook processing Square OAuth tokens until the update is applied.

Fix

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-7533

Affected Products

Easy Digital Downloads