CVE Catalog

CVE-2026-42746

High
Published: Translated: NVD NIST

Summary

The vulnerability in ZAYTECH Smart Online Order for Clover allows the leakage of sensitive data by embedding it in sent data. This issue affects versions from n/a through 1.6.0 inclusive.

Risk Assessment

Organizations may be exposed to the disclosure of sensitive information, potentially leading to breaches of privacy and data security.

Recommendation

It is recommended to update to the latest version of ZAYTECH Smart Online Order for Clover to mitigate this vulnerability.

Original NVD description (English source)

Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Retrieve Embedded Sensitive Data.This issue affects Smart Online Order for Clover: from n/a through <= 1.6.0.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS