Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:776D0469-787D-4D6F-BA45-D8F54368823D
HistoryFeb 28, 2023 - 12:00 a.m.

Stripe Payments For WooCommerce by Checkout < 1.4.11 - Settings Update via CSRF

2023-02-2800:00:00
wpscan.com
9
stripe payments
woocommerce
csrf
vulnerability
security

0.0005 Low

EPSS

Percentile

16.2%

JSON

The plugin does not have CSRF check when updating its settings, which could allow attackers to make logged in admins perform such action via a CSRF attack

CPENameOperatorVersion
checkout-plugins-stripe-woolt1.4.11

Related

cve 1
cvelist 1
openvas 1
prion 1
nvd 1
cve
cve
CVE-2023-23865
2023-02-28 15:15:12
cvelist
cvelist
CVE-2023-23865 WordPress Stripe Payments For WooCommerce by Checkout Plugin <= 1.4.10 is vulnerable to Cross Site Request Forgery (CSRF)
2023-02-28 14:45:53
openvas
openvas
WordPress Stripe Payments For WooCommerce Plugin < 1.4.11 CSRF Vulnerability
2023-04-17 00:00:00
prion
prion
Cross site request forgery (csrf)
2023-02-28 15:15:00
nvd
nvd
CVE-2023-23865
2023-02-28 15:15:12

0.0005 Low

EPSS

Percentile

16.2%

JSON
Related for WPVDB-ID:776D0469-787D-4D6F-BA45-D8F54368823D
cve1cvelist1openvas1prion1nvd1