Lucene search
PatchstackCVE-2024-43315HistoryAug 18, 2024 - 10:15 p.m.
CVE-2024-43315
2024-08-1822:15:11
CWE-639
Patchstack
web.nvd.nist.gov
28
cve-2024-43315
checkout plugins stripe payments
woocommerce
authorization bypass
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0
Percentile
9.5%
Authorization Bypass Through User-Controlled Key vulnerability in Checkout Plugins Stripe Payments For WooCommerce by Checkout.This issue affects Stripe Payments For WooCommerce by Checkout: from n/a through 1.9.1.
Affected configurations
Node
checkout_pluginsstripe_payments_for_woocommerce_by_checkoutRange≤1.9.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| checkout_plugins | stripe_payments_for_woocommerce_by_checkout | * | cpe:2.3:a:checkout_plugins:stripe_payments_for_woocommerce_by_checkout:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "checkout-plugins-stripe-woo",
"product": "Stripe Payments For WooCommerce by Checkout",
"vendor": "Checkout Plugins",
"versions": [
{
"changes": [
{
"at": "1.9.2",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.9.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-43315
2024-08-18 22:15:11
vulnrichment
vulnrichment
cvelist
cvelist
wordfence
wordfence
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0
Percentile
9.5%
Related for CVE-2024-43315