CVE-2019-20455

CVE-2019-20455

EPSS 1.0%

Gateways/Gateway.php in Heartland & Global Payments PHP SDK before 2.0.0 does not enforce SSL certificate validations.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/globalpayments/php-sdk/compare/1.3.3...2.0.0 https://github.com/globalpayments/php-sdk/pull/8 https://github.com/globalpayments/php-sdk/releases/tag/2.0.0 https://winterdragon.ca/global-payments-vulnerability/