CVE-2019-14977

CVE-2019-14977

card/pay/…/amount in the WooCommerce Instamojo Payment Gateway plugin 1.0.7 for WordPress allows Parameter Tampering in the sign parameter, as demonstrated by purchasing an item for lower than the intended price.

Source: CVE-2019-14977