Known Vulnerabilities for Merchant-sdk-php by Paypal
Listed below are 1 of the newest known vulnerabilities associated with "Merchant-sdk-php" by "Paypal".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-31377 json | Missing Authorization vulnerability in Asaquzzaman mishu Woo Product Feed For Marketing Channels woocommerce-to-google-mercha... | Not Provided | 2025-04-09 | 2026-04-01 |
| CVE-2023-6197 json | The Audio Merchant plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.0... | Not Provided | 2023-11-20 | 2026-04-08 |
| CVE-2023-6196 json | The Audio Merchant plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.0... | Not Provided | 2023-11-20 | 2026-04-08 |
| CVE-2017-6099 json | Cross-site scripting (XSS) vulnerability in GetAuthDetails.html.php in PayPal PHP Merchant SDK (aka merchant-sdk-php) 3.9.1 a... | 6.1 - MEDIUM | 2017-02-24 | 2019-03-13 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Paypal | Merchant-sdk-php | 3.9.1 |