Vulnerabilities and security researches forwoocommerce-gateway-stripe woocommerce-gateway-stripe

Jun 07, 2024

CVE, Research URL: CVE-2023-51502
Home page URL: Security reports for WooCommerce Stripe Payment Gateway
Application: WooCommerce Stripe Payment Gateway
Date: Jan 05, 2024
Research Description: Authorization Bypass Through User-Controlled Key vulnerability in WooCommerce WooCommerce Stripe Payment Gateway.This issue affects WooCommerce Stripe Payment Gateway: from n/a through 7.6.1.
Affected versions: max 7.6.2.
Status: vulnerable

CVE, Research URL: CVE-2023-34000
Home page URL: Security reports for WooCommerce Stripe Payment Gateway
Application: WooCommerce Stripe Payment Gateway
Date: Jun 14, 2023
Research Description: Unauth. IDOR vulnerability leading to PII Disclosure in WooCommerce Stripe Payment Gateway plugin <= 7.4.0 versions.
Affected versions: max 7.4.1.
Status: vulnerable

CVE, Research URL: CVE-2023-44999
Home page URL: Security reports for WooCommerce Stripe Payment Gateway
Application: WooCommerce Stripe Payment Gateway
Date: Mar 27, 2024
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce WooCommerce Stripe Payment Gateway.This issue affects WooCommerce Stripe Payment Gateway: from n/a through 7.6.0.
Affected versions: max 7.6.1.
Status: vulnerable

Jun 10, 2024

CVE, Research URL: CVE-2023-35049
Home page URL: Security reports for WooCommerce Stripe Payment Gateway
Application: WooCommerce Stripe Payment Gateway
Date: Jun 19, 2024
Research Description: Missing Authorization vulnerability in WooCommerce WooCommerce Stripe Payment Gateway.This issue affects WooCommerce Stripe Payment Gateway: from n/a through 7.4.0.
Affected versions: max 7.6.1.
Status: vulnerable