PT-2023-24621 · WordPress · Woocommerce Stripe Payment Gateway
Rafie Muhammad
·
Published
2023-06-14
·
Updated
2024-02-06
·
CVE-2023-34000
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
WooCommerce Stripe Payment Gateway plugin versions prior to 7.4.1
Description
A security issue has been identified that could lead to the unauthorized disclosure of sensitive information, specifically a PII disclosure due to an unauthenticated IDOR vulnerability.
Recommendations
For WooCommerce Stripe Payment Gateway plugin versions prior to 7.4.1, update to version 7.4.1 or later to resolve the issue.
Exploit
Fix
IDOR
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Woocommerce Stripe Payment Gateway