Description
WordPress Plugin WooCommerce PayU India (PayUmoney-PayUbiz) is prone to parameter tampering. Attackers can exploit this issue by manipulating parameters exchanged between client and server in order to modify application data. WordPress Plugin WooCommerce PayU India (PayUmoney-PayUbiz) version 2.1.1 is vulnerable; prior versions may also be affected.
Remediation
Disable the plugin until a fix is available
References
Related Vulnerabilities
MySQL CVE-2018-3156 Vulnerability (CVE-2018-3156)
PHP NULL Pointer Dereference Vulnerability (CVE-2016-7132)
WordPress CVE-2012-0937 Vulnerability (CVE-2012-0937)
WordPress Plugin MailChimp for WooCommerce Local File Inclusion (2.1.1)
WordPress 3.8.x Possible SQL Injection Vulnerability (3.8 - 3.8.22)