Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.1
Mollie Payments for WooCommerce allows attackers to inject malicious code into web pages
CVE-2025-68501
Summary
A weakness in Mollie Payments for WooCommerce makes it possible for attackers to inject malicious code into web pages, potentially allowing them to steal sensitive information or take control of users' accounts. To protect your site, update to a version of Mollie Payments for WooCommerce that fixes this issue.
Original title
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Mollie Mollie Payments for WooCommerce mollie-payments-for-woocommerce allows Reflected XSS.Thi...
Original description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Mollie Mollie Payments for WooCommerce mollie-payments-for-woocommerce allows Reflected XSS.This issue affects Mollie Payments for WooCommerce: from n/a through <= 8.1.1.
nvd CVSS3.1
7.1
Vulnerability type
CWE-79
Cross-site Scripting (XSS)
Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026