CVE-2026-42746
7.3 HIGHInsertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Retr...
Published: 2026-05-27 · Last updated: 2026-05-27
Severity and scoring
- CVSS
- 7.3 HIGH
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
- CWE
- CWE-201
Description
Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Retrieve Embedded Sensitive Data.This issue affects Smart Online Order for Clover: from n/a through <= 1.6.0.
Source: NVD
References
Related CVEs
Same CWE
- CVE-2026-54197 — Unauthenticated Sensitive Data Exposure in GetGenie <= 4.4.1 versions (6.5 MEDIUM)
- CVE-2026-52695 — Unauthenticated Sensitive Data Exposure in ABC Crypto Checkout <= 1.8.2 versions (7.5 HIGH)
- CVE-2026-52692 — Unauthenticated Sensitive Data Exposure in Affiliates Manager <= 2.9.50 versions (7.5 HIGH)
- CVE-2026-49082 — Subscriber Sensitive Data Exposure in Chatway Live Chat – AI Chatbot, Customer Support, FAQ & Helpdesk Customer Service & C... (7.4 HIGH)
- CVE-2026-48965 — Subscriber Sensitive Data Exposure in XCloner <= 4.8.6 versions (6.5 MEDIUM)