CVE-2024-1719 | scottpaterson Easy PayPal & Stripe Buy Now Button Plugin up to 2.1 on WordPress Setting wpecpp_stripe_connect_completion cross-site request forgery

Inserito da Angelo Barbosa | Feb 28, 2024 | CVE

A vulnerability, which was classified as problematic, was found in scottpaterson Easy PayPal & Stripe Buy Now Button Plugin up to 2.1 on WordPress. This affects the function wpecpp_stripe_connect_completion of the component Setting Handler. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-1719. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-1719 | scottpaterson Easy PayPal & Stripe Buy Now Button Plugin up to 2.1 on WordPress Setting wpecpp_stripe_connect_completion cross-site request forgery

Post correlati

CVE-2024-41131 | SixLabors ImageSharp up to 2.1.8/3.1.4 Gif Decoder out-of-bounds write

CVE-2024-29118 | Scrollsequence Plugin up to 1.5.4 on WordPress cross site scripting

CVE-2023-7139 | code-projects Client Details System 1.0 HTTP POST Request /admin/regester.php fname/lname/email/contact sql injection

CVE-2023-40161 | Intel Unite Client Software prior 4.2.35041 access control (intel-sa-00981)