📋 الوصف الكامل

CVE ID :CVE-2026-9284 Published : May 23, 2026, 4:27 a.m. | 2 days, 9 hours ago Description :The WooCommerce PayPal Payments plugin for WordPress is vulnerable to unauthorized order manipulation and information disclosure due to missing authorization checks on the `ppc-create-order` and `ppc-get-order` WC-AJAX endpoints in all versions up to, and including, 4.0.1. The `ppc-create-or