| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-51892 | WordPress Sell Media File with Stripe plugin <= 1.0.6 - Stored Cross Site Scripting (XSS) vulnerability | Noor Alam | Sell Media File with Stripe | Medium | 6.5 | 2024-11-19 16:31:13 | Deep Dive |
| CVE-2024-51918 | WordPress Pay With Stripe plugin <= 1.2.1 - Cross Site Scripting (XSS) vulnerability | Freshlight Lab | Pay With Stripe | Medium | 6.5 | 2024-11-19 16:30:59 | Deep Dive |
| CVE-2024-10683 | Contact Form 7 - PayPal & Stripe Add-on <= 2.3.1 - Reflected Cross-Site Scripting | scottpaterson | Contact Form 7 – PayPal & Stripe Add-on | Medium | 6.1 | 2024-11-09 06:41:25 | Deep Dive |
| CVE-2024-48021 | WordPress Contact Form 7 – PayPal & Stripe Add-on plugin <= 2.3 - Reflected Cross Site Scripting (XSS) vulnerability | Scott Paterson | Contact Form 7 – PayPal & Stripe Add-on | High | 7.1 | 2024-10-17 12:29:15 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-45401 | stripe-cli Path Traversal vulnerability | stripe | stripe-cli | High | 7.5 | 2024-09-05 17:09:09 | Deep Dive |
| CVE-2024-43316 | WordPress Stripe Payments For WooCommerce plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) vulnerability | Checkout Plugins | Stripe Payments For WooCommerce by Checkout | Medium | 4.3 | 2024-08-26 20:36:44 | Deep Dive |
| CVE-2024-43315 | WordPress Stripe Payments For WooCommerce plugin <= 1.9.1 - Insecure Direct Object References (IDOR) vulnerability | Checkout Plugins | Stripe Payments For WooCommerce by Checkout | High | 7.5 | 2024-08-18 21:32:22 | Deep Dive |
| CVE-2024-7353 | Accept Stripe Payments <= 2.0.86 - Authenticated (Contributor+) Stored Cross-Site Scripting via accept_stripe_payment_ng Shortcode | mra13 | Accept Stripe Payments | Medium | 5.4 | 2024-08-07 11:30:53 | Deep Dive |
| CVE-2023-35049 | WordPress WooCommerce Stripe Payment Gateway plugin <= 7.4.0 - Unauthenticated Broken Access Control vulnerability | WooCommerce | WooCommerce Stripe Payment Gateway | High | 7.5 | 2024-06-19 12:26:53 | Deep Dive |
| CVE-2023-48285 | WordPress Accept Stripe Payments plugin <= 2.0.79 - Content Injection vulnerability | Tips and Tricks HQ | Stripe Payments | Medium | 5.3 | 2024-06-04 10:23:00 | Deep Dive |
| CVE-2024-32571 | WordPress WP Stripe Checkout plugin <= 1.2.2.41 - Cross Site Scripting (XSS) vulnerability | naa986 | WP Stripe Checkout | Medium | 6.5 | 2024-04-18 09:41:08 | Deep Dive |
| CVE-2023-44999 | WordPress WooCommerce Stripe Gateway plugin <= 7.6.0 - Cross Site Request Forgery (CSRF) vulnerability | WooCommerce | WooCommerce Stripe Payment Gateway | Medium | 5.4 | 2024-03-27 13:27:46 | Deep Dive |
| CVE-2024-29130 | WordPress Contact Form 7 – PayPal & Stripe Add-on plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability | Scott Paterson | Contact Form 7 – PayPal & Stripe Add-on | High | 7.1 | 2024-03-19 13:55:18 | Deep Dive |
| CVE-2023-51683 | WordPress Easy PayPal Buy Now Button Plugin <= 1.8.1 is vulnerable to Cross Site Request Forgery (CSRF) | Scott Paterson | Easy PayPal & Stripe Buy Now Button | Medium | 5.4 | 2024-02-28 16:45:07 | Deep Dive |
| CVE-2024-1719 | Easy PayPal & Stripe Buy Now Button <= 1.8.3 & Contact Form 7 – PayPal & Stripe Add-on <= 2.1 - Cross-Site Request Forgery to Settings Update | scottpaterson | Easy PayPal & Stripe Buy Now Button | Medium | 4.3 | 2024-02-28 09:33:35 | Deep Dive |
| CVE-2024-0705 | Stripe Payment Plugin for WooCommerce <= 3.7.9 - Unauthenticated SQL Injection | themehigh | Payment Gateway of Stripe for WooCommerce | Critical | 9.8 | 2024-01-19 09:31:18 | Deep Dive |
| CVE-2023-52143 | WordPress WP Stripe Checkout Plugin <= 1.2.2.37 is vulnerable to Sensitive Data Exposure | Naa986 | WP Stripe Checkout | High | 7.5 | 2024-01-05 11:08:23 | Deep Dive |
| CVE-2023-51502 | WordPress WooCommerce Stripe Payment Gateway Plugin <= 7.6.1 is vulnerable to Insecure Direct Object References (IDOR) | WooCommerce | WooCommerce Stripe Payment Gateway | High | 7.5 | 2024-01-05 07:56:32 | Deep Dive |
| CVE-2023-47667 | WordPress WP Full Stripe Free plugin <= 7.0.16 - Cross Site Request Forgery (CSRF) vulnerability on every Setting Save | Mammothology | WP Full Stripe Free | Medium | 4.3 | 2023-11-18 20:57:30 | Deep Dive |