This page lists publicly disclosed CVE vulnerabilities affecting amazon payfort-php-sdk (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2018-19190 | The Amazon PAYFORT payfort-php-SDK payment gateway SDK through 2018-04-26 has XSS via the error.php error_msg parameter. | [email protected] | 6.1 | 0.33% | 2018-11-14 | 2024-11-21 |
| CVE-2018-19189 | The Amazon PAYFORT payfort-php-SDK payment gateway SDK through 2018-04-26 has XSS via an arbitrary parameter name or value that is mishandled in an error.php echo statement. | [email protected] | 6.1 | 0.33% | 2018-11-14 | 2024-11-21 |
| CVE-2018-19188 | The Amazon PAYFORT payfort-php-SDK payment gateway SDK through 2018-04-26 has XSS via the success.php fort_id parameter. | [email protected] | 6.1 | 0.40% | 2018-11-14 | 2024-11-21 |
| CVE-2018-19187 | The Amazon PAYFORT payfort-php-SDK payment gateway SDK through 2018-04-26 has XSS via an arbitrary parameter name or value that is mishandled in a success.php echo statement. | [email protected] | 6.1 | 0.33% | 2018-11-14 | 2024-11-21 |
| CVE-2018-19186 | The Amazon PAYFORT payfort-php-SDK payment gateway SDK through 2018-04-26 has XSS via the route.php paymentMethod parameter. | [email protected] | 6.1 | 0.33% | 2018-11-14 | 2024-11-21 |