All 2 CVE vulnerabilities found in pay, with AI-generated Chinese analysis, references, and POCs.
Vendor: pay-rails
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33661 | WeChat Pay callback signature verification bypassed when Host header is localhost CWE-290 | 8.6 | High | 2026-03-26 |
| CVE-2023-30614 | Improper Neutralization of Script-Related HTML Tags in a Web Page in pay CWE-79 | 7.1 | High | 2023-04-19 |
All 2 known CVE vulnerabilities affecting pay with full Chinese analysis, references, and POCs where available.