2 matches found
CVE-2024-43316
CVE-2024-43316: Cross-Site Request Forgery (CSRF) in Stripe Payments For WooCommerce by Checkout plugin for WooCommerce. Affected plugin versions are from n/a through 1.9.1. The mitigation provided in connected sources is to upgrade to version 1.9.2 or later, which resolves the issue. No exploita...
CVE-2023-23865
CVE-2023-23865 affects WordPress Stripe Payments For WooCommerce by Checkout Plugin. Vulnerable until version 1.4.10 includes a Cross-Site Request Forgery (CSRF) flaw that can cause settings changes. Exploitation vector: unauthenticated users could trigger actions via CSRF; impact is limited to t...