CVE-2026-11324 | evertec Placetopay Gateway Plugin up to 3.2.2 on WordPress redirect-url cross site scripting

SecurityVulns

A vulnerability, which was classified as problematic, has been found in evertec Placetopay Gateway Plugin up to 3.2.2 on WordPress. The affected element is an unknown function of the component Gateway. Performing a manipulation of the argument redirect-url results in cross site scripting.

This vulnerability is reported as CVE-2026-11324. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More