5 matches found
CVE-2026-42752 WordPress Stripe Payments plugin <= 2.0.98 - Bypass Vulnerability vulnerability
Unauthenticated Bypass Vulnerability in Stripe Payments = 2.0.98 versions...
CVE-2021-47983
WordPress Plugin Stripe Payments 2.0.39 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the AcceptStripePayments-settingscurrencycode parameter. Attackers can submit POST requests to /wp-admin/options.php with script...
WordPress Stripe Payments Plugin <= 2.0.86 is vulnerable to Cross Site Scripting (XSS)
Software Stripe Payments Type Plugin Vulnerable versions = 2.0.86 Fixed in 2.0.87 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-7353 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4e25c32d75e3 Credits Arkadiusz Hydzik...
WordPress Stripe Payments Plugin <= 2.0.79 is vulnerable to Content Injection
Software Stripe Payments Type Plugin Vulnerable versions = 2.0.79 Fixed in 2.0.80 OWASP Top 10 A3: Injection Classification Content Injection CVE CVE-2023-48285 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID d526738c5887 Credits Joshua Chan Required privilege...
WordPress Stripe Payments plugin <= 2.0.39 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
Authenticated Stored Cross-Site Scripting XSS vulnerability found by Park Won Seok in WordPress Stripe Payments plugin versions = 2.0.39. Solution Update the WordPress Stripe Payments plugin to the latest available version at least 2.0.40...