CVE-2025-68602

MEDIUM NUCLEI

Scott Paterson Accept Donations with PayPal <1.5.1 - Open Redirect

Title source: llm

Description

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Scott Paterson Accept Donations with PayPal & Stripe easy-paypal-donation allows Phishing.This issue affects Accept Donations with PayPal & Stripe: from n/a through <= 1.5.2.

Exploits (1)

github WORKING POC

by Sechunt3r · shellpoc

https://github.com/Sechunt3r/CVE-POCs/tree/main/CVE-2025-68602

View Code ZIP pw:eip

Nuclei Templates (1)

Accept Donations with PayPal <= 1.5.2 - Open Redirect

MEDIUMVERIFIEDby Shivam Kamboj

References (1)

[Third Party Advisory] https://patchstack.com/database/Wordpress/Plugin/easy-paypal-donation/vulnerability/wordpress-accept-donations-with-paypal-plugin-1-5-1-open-redirection-vulnerability?_s_id=cve

Scores

CVSS v3 4.7

EPSS 0.0018

EPSS Percentile 39.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N

Details

CWE

CWE-601

Status published

Products (2)

Scott Paterson/Accept Donations with PayPal < <= 1.5.1

Scott Paterson/Accept Donations with PayPal & Stripe < 1.5.2

Published Dec 24, 2025

Tracked Since Feb 18, 2026