CNNVD-202601-4688 Information

CNNVD ID

CNNVD-202601-4688

Related CVE

CVE-2026-0750

• CNNVD Published: 2026-01-28

Description (Chinese)

Drupal Commerce Paybox是Drupal社区的一个支付插件。 Drupal Commerce Paybox 7-x-1.0版本至7.X-1.5版本存在安全漏洞，该漏洞源于加密签名验证不当，可能导致身份验证绕过。

Description (English)

Drupal Common Paybox is a payment plugin for the Drupal community. There is a security loophole in versions 7-x-1.0 to 7.X-1.5 of Drupal Company Paybox, which stems from the improper authentication of encrypted signatures, which may lead to the identification being bypassed.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Drupal

Published

2026-01-28

Last Modified

2026-02-24

References

https://d7es.tag1.com/security-advisories/commerce-paybox-moderately-critical-payment-bypass-vulnerability https://www.herodevs.com/vulnerability-directory/cve-2026-0750 https://access.redhat.com/security/cve/cve-2026-0750

Patch

https://gitlab.com/tag1consulting/public/commerce_paybox/-/releases