cleantalk
Vulnerabilities and Security Researches

Elementor Stripe Payment, 2330171d2355b977f89e1cff36c18d815163ec0d

CVE, Research URL

2330171d2355b977f89e1cff36c18d815163ec0d

Home page URL

Security reports for Elementor Stripe Payment

Application

Elementor Stripe Payment

Published on
Jul 18, 2023
Research Description
Elementor Stripe Payment [pay-addons-for-elementor] < 1.2.2 WordPress Elementor Stripe Payment Plugin < 1.2.2 is vulnerable to Cross Site Scripting (XSS) Update the plugin to the latest version. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Elementor Stripe Payment Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.2.2.
Affected versions
Min -, max 1.2.2.
Status
vulnerable
Previous vulnerability researches
Super Addons for Elementor (CVE-2024-51588) , Nov 04, 2024
Hoo Addons for Elementor (CVE-2024-51590) , Nov 04, 2024
Elementor Stripe Payment (2330171d2355b977f89e1cff36c18d815163ec0d) , Jun 07, 2024
Prime Addons for Elementor (CVE-2024-13855) , Feb 22, 2025
Drozd &#8211; Addons for Elementor (CVE-2024-52425) , Nov 17, 2024
New vulnerability
CubeWP Forms &#8211; LeadGen &amp; Contact Form (CVE-2025-49880) , Jun 20, 2025
WP2LEADS | WordPress und KlickTipp einfach verbinden &#8211; WooCommerce und KlickTipp einfach verbinden (CVE-2025-49316) , Jun 20, 2025
Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit (CVE-2025-1562) , Jun 20, 2025
eCommerce Product Catalog Plugin for WordPress (CVE-2025-49331) , Jun 20, 2025
Broadstreet (CVE-2025-4652) , Jun 20, 2025