Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-30373

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.0032EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:17 a.m.11 views

CVE-2024-32571

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in naa986 WP Stripe Checkout allows Stored XSS.This issue affects WP Stripe Checkout: from n/a through 1.2.2.41...

6.5CVSS5.2AI score0.0032EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:6 p.m.6 views

CVE-2022-3986

The WP Stripe Checkout WordPress plugin before 1.2.2.21 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks...

5.4CVSS5.9AI score0.00471EPSS
Exploits2References1
NVD
NVD
added 2024/04/18 10:15 a.m.14 views

CVE-2024-32571

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in naa986 WP Stripe Checkout allows Stored XSS.This issue affects WP Stripe Checkout: from n/a through 1.2.2.41...

6.5CVSS6.4AI score0.0032EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/18 9:41 a.m.23 views

CVE-2024-32571 WordPress WP Stripe Checkout plugin <= 1.2.2.41 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in naa986 WP Stripe Checkout allows Stored XSS.This issue affects WP Stripe Checkout: from n/a through 1.2.2.41...

6.5CVSS6.6AI score0.0032EPSS
Exploits0References1
CVE
CVE
added 2024/04/18 9:41 a.m.72 views

CVE-2024-32571

CVE-2024-32571 : Stored XSS in WP Stripe Checkout (naa986) via input during web page generation, affecting WP Stripe Checkout versions up to 1.2.2.41. Connected sources confirm the issue as improper neutralization of input in the shortcode context, enabling stored cross-site scripting. Red Hat an...

6.5CVSS5.2AI score0.0032EPSS
Exploits0References1
OSV
OSV
added 2024/01/05 11:15 a.m.5 views

CVE-2023-52143

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Naa986 WP Stripe Checkout.This issue affects WP Stripe Checkout: from n/a through 1.2.2.37...

7.5CVSS5.8AI score0.00524EPSS
Exploits0References1
NVD
NVD
added 2024/01/05 11:15 a.m.10 views

CVE-2023-52143

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Naa986 WP Stripe Checkout.This issue affects WP Stripe Checkout: from n/a through 1.2.2.37...

7.5CVSS7.5AI score0.00524EPSS
Exploits0References1
Prion
Prion
added 2024/01/05 11:15 a.m.13 views

Code injection

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Naa986 WP Stripe Checkout.This issue affects WP Stripe Checkout: from n/a through 1.2.2.37...

5CVSS7.1AI score0.00524EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/01/05 11:8 a.m.42 views

CVE-2023-52143

CVE-2023-52143 concerns WP Stripe Checkout (WP Stripe Checkout plugin) where a Sensitive Information Exposure via Debug Log vulnerability affects versions 1.2.2.37 and earlier. The issue is that logs may reveal sensitive data to unauthorized actors. CVSS 3.1 base score 7.5 (HIGH). The connected t...

7.5CVSS7.8AI score0.00524EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/05 11:8 a.m.10 views

CVE-2023-52143 WordPress WP Stripe Checkout Plugin <= 1.2.2.37 is vulnerable to Sensitive Data Exposure

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Naa986 WP Stripe Checkout.This issue affects WP Stripe Checkout: from n/a through 1.2.2.37...

7.5CVSS6.8AI score0.00524EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/05 11:8 a.m.20 views

CVE-2023-52143 WordPress WP Stripe Checkout Plugin <= 1.2.2.37 is vulnerable to Sensitive Data Exposure

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Naa986 WP Stripe Checkout.This issue affects WP Stripe Checkout: from n/a through 1.2.2.37...

7.5CVSS7.7AI score0.00524EPSS
Exploits0References1
NVD
NVD
added 2022/12/19 2:15 p.m.37 views

CVE-2022-3986

The WP Stripe Checkout WordPress plugin before 1.2.2.21 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks...

5.4CVSS0.00471EPSS
Exploits2References1
OSV
OSV
added 2022/12/19 2:15 p.m.4 views

CVE-2022-3986

The WP Stripe Checkout WordPress plugin before 1.2.2.21 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks...

5.4CVSS5.8AI score0.00471EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2022/12/19 1:41 p.m.4 views

CVE-2022-3986 WP Stripe Checkout < 1.2.2.21 - Contributor+ Stored XSS

The WP Stripe Checkout WordPress plugin before 1.2.2.21 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks...

5.4AI score0.00471EPSS
Exploits2References1
CVE
CVE
added 2022/12/19 1:41 p.m.54 views

CVE-2022-3986

The WP Stripe Checkout WordPress plugin (versions before 1.2.2.21) does not validate or escape some shortcode attributes before output, enabling Stored XSS for users with as low as Contributor. A public exploit example is documented in WPEXploit demonstrating a crafted shortcode that triggers XSS...

5.4CVSS5.3AI score0.00471EPSS
Exploits2References1Affected Software1
CNNVD
CNNVD
added 2022/12/19 12:0 a.m.3 views

WordPress plugin WP Stripe Checkout 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

5.4CVSS5.6AI score0.00471EPSS
Exploits2References2
WPVulnDB
WPVulnDB
added 2022/11/22 12:0 a.m.21 views

WP Stripe Checkout < 1.2.2.21 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks PoC As a contributor, put the following shortcode in a page/post...

5.4CVSS1.9AI score0.00471EPSS
Exploits2Affected Software1
Patchstack
Patchstack
added 2022/11/22 12:0 a.m.29 views

WordPress WP Stripe Checkout plugin <= 1.2.2.20 - Auth. Stored Cross-Site Scripting (XSS) vulnerability

Auth. Stored Cross-Site Scripting XSS vulnerability discovered by Lana Codes in WordPress WP Stripe Checkout plugin versions = 1.2.2.20. Solution Update the WordPress WP Stripe Checkout plugin to the latest available version at least 1.2.2.21...

2.1AI score0.00471EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder