Lucene search
K

34 matches found

CVE
CVE
added 2026/06/27 6:50 a.m.25 views

CVE-2026-12432

The CVE affects the WP Full Stripe Free plugin for WordPress, up to version 8.4.3. The vulnerability is in the wpfs_update_failed_payment_status AJAX action, where the handler is registered via wp_ajax_ and wp_ajax_nopriv_ hooks and the underlying update_failed_payment_status() function performs ...

5.3CVSS5.6AI score0.00323EPSS
Exploits2References10
EUVD
EUVD
added 2026/06/27 6:50 a.m.11 views

EUVD-2026-39957

The WP Full Stripe Free plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 8.4.3 via the wpfsupdatefailedpaymentstatus AJAX action. The handler is registered through both wpajax and wpajaxnopriv hooks and the underlying updatefailedpaymentstatus function...

5.3CVSS5.6AI score0.00323EPSS
Exploits2References10
NVD
NVD
added 2026/06/15 9:16 p.m.8 views

CVE-2026-42378

Subscriber Broken Authentication in WP Full Stripe Free = 8.4.1 versions...

6.5CVSS0.0039EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:18 p.m.9 views

EUVD-2026-36810

Subscriber Broken Authentication in WP Full Stripe Free = 8.4.1 versions...

6.5CVSS5.2AI score0.0039EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/15 8:18 p.m.31 views

CVE-2026-42378 WordPress WP Full Stripe Free plugin <= 8.4.1 - Broken Authentication vulnerability

Subscriber Broken Authentication in WP Full Stripe Free = 8.4.1 versions...

6.5CVSS0.0039EPSS
Exploits0References1
CVE
CVE
added 2026/06/15 8:18 p.m.16 views

CVE-2026-42378

CVE-2026-42378 concerns the WordPress plugin WP Full Stripe Free (versions

6.5CVSS5.2AI score0.0039EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.11 views

PT-2026-49437

Subscriber Broken Authentication in WP Full Stripe Free = 8.4.1 versions...

6.5CVSS5.2AI score0.0039EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/06/01 9:35 a.m.9 views

WordPress WP Full Stripe Free plugin <= 8.4.1 - Broken Authentication vulnerability

Broken Authentication vulnerability discovered by hhhai in WordPress Plugin WP Full Stripe Free versions = 8.4.1...

6.5CVSS5.8AI score0.0039EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/10/25 3:7 a.m.9 views

WordPress Stripe Payment Forms plugin <= 8.3.1 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by mikemyers in WordPress Plugin WP Full Stripe Free versions = 8.3.1...

7.5CVSS7.8AI score0.00317EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-26988

Malicious code in bioql PyPI...

7.6CVSS6.4AI score0.00331EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-51766

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00294EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/07 2:32 p.m.5 views

CVE-2025-58789

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Themeisle WP Full Stripe Free wp-full-stripe-free allows SQL Injection.This issue affects WP Full Stripe Free: from n/a through = 8.2.5...

7.6CVSS5.9AI score0.00331EPSS
Exploits0References1
CVE
CVE
added 2025/09/05 1:44 p.m.18 views

CVE-2025-58789

CVE-2025-58789 describes an SQL Injection in the WordPress plugin WP Full Stripe Free (affected: versions up to 8.3.0; some sources cite until 8.2.5 and up to 8.3.0). The vulnerability arises from improper neutralization of special elements in SQL commands, enabling an attacker to potentially man...

7.6CVSS5.9AI score0.00331EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/05 1:44 p.m.7 views

CVE-2025-58789 WordPress WP Full Stripe Free Plugin <= 8.2.5 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Themeisle WP Full Stripe Free wp-full-stripe-free allows SQL Injection.This issue affects WP Full Stripe Free: from n/a through = 8.2.5...

7.6CVSS5.9AI score0.00331EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/05 1:44 p.m.15 views

CVE-2025-58789 WordPress WP Full Stripe Free Plugin <= 8.2.5 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Themeisle WP Full Stripe Free wp-full-stripe-free allows SQL Injection.This issue affects WP Full Stripe Free: from n/a through = 8.2.5...

7.6CVSS0.00331EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/05 1:19 p.m.6 views

WordPress WP Full Stripe Free Plugin <= 8.2.5 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Que Thanh Tuan Blue Rock in WordPress Plugin WP Full Stripe Free versions = 8.2.5...

7.6CVSS7.7AI score0.00331EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/05 12:0 a.m.6 views

PT-2025-36129

Name of the Vulnerable Software and Affected Versions: WP Full Stripe Free versions through 8.3.0 Description: WP Full Stripe Free is susceptible to a SQL injection flaw due to improper neutralization of special elements within SQL commands. Recommendations: Update WP Full Stripe Free to a versio...

7.6CVSS7.3AI score0.00331EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/09/05 12:0 a.m.8 views

WordPress plugin WP Full Stripe Free SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

7.6CVSS7.6AI score0.00331EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:52 a.m.13 views

CVE-2023-46088

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Mammothology WP Full Stripe Free plugin = 1.6.1 versions...

5.9CVSS5.6AI score0.00316EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:12 a.m.8 views

CVE-2023-47667

Cross-Site Request Forgery CSRF vulnerability in Mammothology WP Full Stripe Free.This issue affects WP Full Stripe Free: from n/a through 7.0.16...

8.8CVSS6.9AI score0.00294EPSS
Exploits0
Rows per page
Query Builder