Simple Stripe Checkout, CVE-2025-49963

CVE, Research URL: CVE-2025-49963
Home page URL: Security reports for Simple Stripe Checkout
Application: Simple Stripe Checkout
Published on: Oct 22, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in growniche Simple Stripe Checkout simple-stripe-checkout allows Reflected XSS.This issue affects Simple Stripe Checkout: from n/a through <= 1.1.28.
Affected versions: max 1.1.28.
Status: vulnerable