This issue affects SePay Gateway: from n/a through 1.1.20.
Analysis and contextual insights are available on OpenCVE Cloud.
Vendor Solution
Update the WordPress SePay Gateway Plugin to the latest available version (at least 1.1.21).
Tracking
Sign in to view the affected projects.
No advisories yet.
Tue, 26 May 2026 14:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 26 May 2026 13:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Sepay Team
Sepay Team sepay Gateway Wordpress Wordpress wordpress |
|
| Vendors & Products |
Sepay Team
Sepay Team sepay Gateway Wordpress Wordpress wordpress |
Mon, 25 May 2026 23:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Missing Authorization vulnerability in SePay team SePay Gateway allows Retrieve Embedded Sensitive Data. This issue affects SePay Gateway: from n/a through 1.1.20. | |
| Title | WordPress SePay Gateway plugin <= 1.1.20 - Sensitive Data Exposure vulnerability | |
| Weaknesses | CWE-862 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-05-26T10:49:33.396Z
Reserved: 2026-04-29T09:05:44.122Z
Link: CVE-2026-42763
Updated: 2026-05-26T10:49:28.221Z
Status : Deferred
Published: 2026-05-25T23:16:32.827
Modified: 2026-06-17T10:48:21.527
Link: CVE-2026-42763
No data.
OpenCVE Enrichment
Updated: 2026-05-26T12:59:53Z