all InfoSec news
Critical Vulnerability in WordPress Stripe Payment Plugin Exposes Customer Data
Cyber Security News cybersecuritynews.com
The WordPress Stripe Payment Gateway plugin has been vulnerable to Unauthenticated Insecure Direct Object Reference (IDOR) Vulnerability. WooCommerce developed this plugin. The plugin version is 7.4.1 and has nearly 900K installations worldwide. Usually, payments are redirected to externally hosted checkout pages where the checkout and payment process happens. The use of this plugin is to […]
The post Critical Vulnerability in WordPress Stripe Payment Plugin Exposes Customer Data appeared first on Cyber Security News.
critical critical vulnerability customer customer data data gateway idor insecure object payment payments plugin process reference stripe version vulnerability vulnerable woocommerce wordpress