CVE-2026-2592 | Zarinpal Gateway for WooCommerce Plugin up to 5.0.16 on WordPress Payment Call Return_from_ZarinPal_Gateway access control

A vulnerability, which was classified as critical, has been found in Zarinpal Gateway for WooCommerce Plugin up to 5.0.16 on WordPress. The impacted element is the function Return_from_ZarinPal_Gateway of the component Payment Call Handler. Performing a manipulation results in improper access controls.

This vulnerability is identified as CVE-2026-2592. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More