Description
WordPress Plugin PayPal for WooCommerce is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently perform a variety of the plugin's actions. WordPress Plugin PayPal for WooCommerce version 1.5.7 is vulnerable; prior versions may also be affected.
Remediation
Disable the plugin until a fix is available
References
Related Vulnerabilities
phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2010-4558)
MySQL CVE-2021-35640 Vulnerability (CVE-2021-35640)
WordPress 5.7.x Multiple Prototype Pollution Vulnerabilities (5.7 - 5.7.5)
WordPress Plugin Weather for us-animated weather widget Crypto Mining (1.8)
Apache HTTP Server Improper Handling of Case Sensitivity Vulnerability (CVE-2001-0766)