CVE-2025-68602 Scanner

The Accept Donations with PayPal & Stripe plugin is widely used by WordPress site owners to facilitate online donations and streamline the payment process using popular payment gateways like PayPal and Stripe. It makes it easy for nonprofits, charities, and other organizations to accept funds from a global audience. With options for customizable donation forms and integration with existing WordPress sites, this plugin is a popular pick for those looking to raise funds efficiently. The vulnerability in question is significant for sites relying on this plugin to ensure a secure transaction environment. It is crucial for site administrators using this plugin version to be aware of potential security risks concerning user redirection. By targeting plugins that enjoy widespread usage, vulnerabilities like this can yield high-impact threats to unsuspecting users.

The Open Redirect vulnerability occurs due to insufficient validation of user-supplied URLs in redirect mechanisms. In this case, attackers may exploit redirect functions to send unsuspecting users to malicious domains. Open redirects typically involve manipulating the URL parameters of legitimate sites to redirect users to harmful locations without their knowledge. Such vulnerabilities are often leveraged in phishing campaigns aimed at credential theft or infecting devices with malware. Addressing this vulnerability is critical for maintaining user trust and protecting sensitive data on websites using this plugin. It often requires updates and vigilant security practices to mitigate such redirections.

Technically, the vulnerability involves a flawed redirection endpoint within the plugin, typically identified through specific URL parameters. The endpoint fails to adequately sanitize or validate where these parameters direct the user, thus enabling attackers to craft URLs that, when clicked, lead users away from the intended destination to malicious sites. Attackers may exploit this by embedding these crafted URLs in seemingly benign contexts, tricking users into clicking them. Ensuring parameters used in redirection are scrutinized for legitimacy is an essential practice to counteract such vulnerabilities. Regular plugin updates often incorporate fixes for such issues, emphasizing the importance of maintaining current versions.

If exploited, the Open Redirect vulnerability allows attackers to effectively hijack user sessions, redirecting them to phishing or malware-laden sites. Once redirected, users may find themselves entering credentials into a look-alike site, unwittingly exposing sensitive information. This can result in identity theft, unauthorized account access, and loss of personal data akin to real-world social engineering attacks. The impacts can cascade, affecting user trust and potentially leading to wider reputational damage for affected organizations. Thus, maintaining control over redirection processes is imperative in reducing these risks.

REFERENCES

• https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/easy-paypal-donation/accept-donations-with-paypal-152-unauthenticated-open-redirect
• https://nvd.nist.gov/vuln/detail/CVE-2025-68602