Browse all 5 CVE security advisories affecting Razorpay. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Razorpay provides payment gateway solutions enabling digital transactions for businesses. Historically, vulnerabilities have included cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws, with five CVEs documented. Security assessments reveal common issues in input validation and access control. While no major public security incidents have been widely reported, the presence of multiple CVEs indicates ongoing security challenges. The platform handles sensitive financial data, making robust security measures critical. Organizations implementing Razorpay should ensure regular security updates and proper configuration to mitigate potential risks associated with its payment processing infrastructure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-10851 | Razorpay Payment Button <= 2.4.6 - Reflected Cross-Site Scripting — Razorpay Payment Button PluginCWE-79 | 6.1 | Medium | 2024-11-13 |
This page lists every published CVE security advisory associated with Razorpay. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.