PT-2026-5190 · Unknown+1 · Drupal Commerce Paybox+1
Dave Hernandez
·
Published
2026-01-28
·
Updated
2026-03-09
·
CVE-2026-0750
CVSS v4.0
8.7
High
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Drupal Commerce Paybox versions 7.x-1.0 through 7.x-1.5
Description
A flaw exists in the cryptographic signature verification process within Drupal Commerce Paybox on Drupal 7.X, potentially allowing attackers to bypass authentication. This issue could lead to unauthorized access.
Recommendations
Update Drupal Commerce Paybox to a version later than 7.x-1.5.
Exploit
Fix
Improper Verification of Cryptographic Signature
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Drupal
Drupal Commerce Paybox