CVE-2025-68016

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

22/01/2026

Last modified:

22/01/2026

Description

Missing Authorization vulnerability in Onepay Sri Lanka onepay Payment Gateway For WooCommerce onepay-payment-gateway-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects onepay Payment Gateway For WooCommerce: from n/a through

Impact

References to Advisories, Solutions, and Tools

https://patchstack.com/database/Wordpress/Plugin/onepay-payment-gateway-for-woocommerce/vulnerability/wordpress-onepay-payment-gateway-for-woocommerce-plugin-1-1-2-other-vulnerability-type-vulnerability?_s_id=cve