Security Advisories - PKSA-wggt-fb9b-c6dj - Packagist

PKSA-wggt-fb9b-c6dj Security Advisory

[MEDIUM] Sylius PayPal Plugin has an Order Manipulation Vulnerability after PayPal Checkout

PKSA-wggt-fb9b-c6dj CVE-2025-30152 GHSA-hxg4-65p5-9w37

Affected package: sylius/paypal-plugin

Affected version: >=2.0.0,<2.0.2|>=1.7.0,<1.7.2|<1.6.2

Reported by:
GitHub