Easy Digital Downloads
Moderate fix1 remedy
cpe:2.3:a:easydigitaldownloads:easy_digital_downloads:*:*:*:*:wordpress:*:*
Moderate fix1 remedy
- <= 3.6.7
Easy Digital Downloads Cross-Site Request Forgery Vulnerability in Square Integration
Vulnerability
Patched
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Easy Digital Downloads (EDD) plugin for WordPress, affecting all versions through 3.6.7. The issue arises from the 'handle_oauth_redirect()' function, which processes Square OAuth tokens from a user-supplied GET parameter without proper nonce verification. This lack of validation allows unauthenticated attackers to manipulate the store's Square payment gateway credentials by tricking a logged-in administrator into clicking a malicious link, potentially leading to unauthorized access to the payment account.
Impact
Exploitation of this vulnerability could result in unauthorized modification of Square payment gateway credentials, allowing for payment account hijacking.
Reproduction
To reproduce this vulnerability, an attacker must craft a link that, when clicked by a logged-in administrator, sends a request to the WordPress site with a 'square_tokens' parameter containing the OAuth tokens. The request will bypass CSRF protections, allowing the attacker to overwrite the Square payment gateway credentials.
Remediation
Users are advised to update the Easy Digital Downloads plugin to version 3.6.8 or later.
Added: May 28, 2026, 6:26 AM
Updated: May 28, 2026, 6:26 AM
Vulnerability Rating
Custom Algorithm
spread
3.4impact
2.5exploitability
7.4remediation
7.7relevance
9.7threat
4.8urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.