{"vulnerability": "ghsa-hxg4-65p5-9w37", "sightings": [{"uuid": "57a919fc-7b66-4e28-b688-bee254417f3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-HXG4-65P5-9W37", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8086", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30152\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N)\n\ud83d\udd39 Description: The Syliud PayPal Plugin is the Sylius Core Team\u2019s plugin for the PayPal Commerce Platform. Prior to 1.6.2, 1.7.2, and 2.0.2, a discovered vulnerability allows users to modify their shopping cart after completing the PayPal Checkout process and payment authorization. If a user initiates a PayPal transaction from a product page or the cart page and then returns to the order summary page, they can still manipulate the cart contents before finalizing the order. As a result, the order amount in Sylius may be higher than the amount actually captured by PayPal, leading to a scenario where merchants deliver products or services without full payment. The issue is fixed in versions: 1.6.2, 1.7.2, 2.0.2 and above.\n\ud83d\udccf Published: 2025-03-19T15:57:32.445Z\n\ud83d\udccf Modified: 2025-03-19T15:57:32.445Z\n\ud83d\udd17 References:\n1. https://github.com/Sylius/PayPalPlugin/security/advisories/GHSA-hxg4-65p5-9w37\n2. https://github.com/Sylius/PayPalPlugin/commit/5613df827a6d4fc50862229295976200a68e97aa", "creation_timestamp": "2025-03-19T16:18:08.000000Z"}]}