PT-2026-5566 · WordPress · Stripe Green Downloads
Published
2026-02-01
·
Updated
2026-02-01
·
CVE-2022-50797
CVSS v3.1
6.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Stripe Green Downloads Wordpress Plugin version 2.03
Description
The Stripe Green Downloads Wordpress Plugin version 2.03 contains a persistent cross-site scripting issue. This allows remote attackers to inject malicious scripts into button label fields. Attackers can exploit input parameters to execute arbitrary scripts, potentially leading to session hijacking and application module manipulation.
Recommendations
Update to a newer version that contains a fix for this vulnerability.
Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Stripe Green Downloads