Security Mpay24 Payment Module 1.5 Information Disclosure / SQL Injection September 3, 2014 007admin Leave a comment Mpay24 Payment Module versions 1.5 and below suffer from information disclosure and remote SQL injection vulnerabilities.