| CVE-2025-10383 | Contest Gallery – Upload, Vote & Sell with PayPal and Stripe <= 27.0.2 - Authenticated (Author+) Stored Cross-Site Scripting | contest-gallery | Contest Gallery – Upload & Vote Photos, Media, Sell with PayPal & Stripe | Medium | 6.4 | 2025-10-04 03:33:32 | Deep Dive |
| CVE-2025-9463 | Payments Plugin and Checkout Plugin for WooCommerce: Stripe, PayPal, Square, Authorize.net <= 1.117.5 - Authenticated (Contributor+) SQL Injection via order_by Parameter | peachpay | PeachPay — Payments & Express Checkout for WooCommerce (supports Stripe, PayPal, Square, Authorize.net, NMI) | Medium | 6.5 | 2025-09-10 06:38:46 | Deep Dive |
| CVE-2025-58789 | WordPress WP Full Stripe Free Plugin <= 8.2.5 - SQL Injection Vulnerability | Themeisle | WP Full Stripe Free | High | 7.6 | 2025-09-05 13:44:58 | Deep Dive |
| CVE-2025-7725 | Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal or Stripe, Social Share Buttons, OpenAI <= 26.1.0 - Unauthenticated Stored Cross-Site Scripting | contest-gallery | Contest Gallery – Upload & Vote Photos, Media, Sell with PayPal & Stripe | High | 7.2 | 2025-08-01 04:24:29 | Deep Dive |
| CVE-2025-6716 | Contest Gallery <= 26.0.8 - Authenticated (Author+) Stored Cross-Site Scripting | contest-gallery | Contest Gallery – Upload & Vote Photos, Media, Sell with PayPal & Stripe | Medium | 6.4 | 2025-07-11 06:43:33 | Deep Dive |
| CVE-2025-49302 | WordPress Easy Stripe plugin <= 1.1 - Remote Code Execution (RCE) Vulnerability | Scott Paterson | Easy Stripe | Critical | 10.0 | 2025-07-04 11:18:01 | Deep Dive |
| CVE-2025-53309 | WordPress Accept Stripe Payments Using Contact Form 7 plugin <= 3.0 - Sensitive Data Exposure Vulnerability | ZealousWeb | Accept Stripe Payments Using Contact Form 7 | Medium | 5.3 | 2025-06-27 13:21:33 | Deep Dive |
| CVE-2025-3862 | Contest Gallery <= 26.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter | contest-gallery | Contest Gallery – Upload & Vote Photos, Media, Sell with PayPal & Stripe | Medium | 6.4 | 2025-05-08 11:13:45 | Deep Dive |
| CVE-2025-47518 | WordPress Contact Form 7 – PayPal & Stripe Add-on plugin <= 2.3.4 - Cross Site Scripting (XSS) Vulnerability | Scott Paterson | Contact Form 7 – PayPal & Stripe Add-on | Medium | 5.9 | 2025-05-07 14:20:06 | Deep Dive |
| CVE-2025-47517 | WordPress Accept Donations with PayPal plugin <= 1.4.5 - CSRF to Stored XSS vulnerability | Scott Paterson | Accept Donations with PayPal & Stripe | High | 7.1 | 2025-05-07 14:20:05 | Deep Dive |
| CVE-2025-1513 | Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal, Social Share Buttons <= 26.0.0.1 - Unauthenticated Stored Cross-Site Scripting | contest-gallery | Contest Gallery – Upload & Vote Photos, Media, Sell with PayPal & Stripe | High | 7.2 | 2025-02-28 05:23:15 | Deep Dive |
| CVE-2025-1690 | ThemeMakers Stripe Checkout <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | ThemeMakers | ThemeMakers Stripe Checkout | Medium | 6.4 | 2025-02-27 08:22:04 | Deep Dive |
| CVE-2024-13631 | OM Stripe <= 02.00.00 - Reflected XSS | Unknown | Om Stripe | 高危 | - | 2025-02-26 06:00:10 | Deep Dive |
| CVE-2024-13728 | Accept Donations with PayPal & Stripe <= 1.4.4 - Reflected Cross-Site Scripting | scottpaterson | Accept Donations with PayPal & Stripe | Medium | 6.1 | 2025-02-23 05:22:33 | Deep Dive |
| CVE-2024-11895 | Online Payments – Get Paid with PayPal, Square & Stripe <= 3.20.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | vcita | Online Payments – Get Paid with PayPal, Square & Stripe | Medium | 6.4 | 2025-02-18 07:28:13 | Deep Dive |
| CVE-2025-22661 | WordPress Online Payments plugin <= 3.20.0 - Cross Site Scripting (XSS) vulnerability | vcita | Online Payments – Get Paid with PayPal, Square & Stripe | Medium | 6.5 | 2025-01-21 17:21:51 | Deep Dive |
| CVE-2024-12255 | Accept Stripe Payments Using Contact Form 7 <= 2.5 - Unauthenticated Information Exposure | zealopensource | Accept Stripe Payments Using Contact Form 7 | Medium | 5.3 | 2024-12-12 05:24:22 | Deep Dive |
| CVE-2023-48286 | WordPress Accept Stripe Payments plugin <= 2.0.79 - Broken Access Control vulnerability | mra13 | Stripe Payments | 高危 | - | 2024-12-09 11:30:31 | Deep Dive |
| CVE-2024-53752 | WordPress Stripe Donation plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability | Berg Informatik | Stripe Donation | Medium | 6.5 | 2024-12-01 21:20:02 | Deep Dive |
| CVE-2024-11362 | Payments Plugin and Checkout Plugin for WooCommerce: Stripe, PayPal, Square, Authorize.net <= 1.112.0 - Reflected Cross-Site Scripting | peachpay | PeachPay — Payments & Express Checkout for WooCommerce (supports Stripe, PayPal, Square, Authorize.net, NMI) | Medium | 6.1 | 2024-11-23 03:25:50 | Deep Dive |