Sensitive data leaks likely with critical WooCommerce Stripe Gateway plugin flaw

16 June 2023

The Hacker News reports that exploitation of a critical security vulnerability in the WooCommerce Stripe Gateway plugin, which is used to permit various payment methods in WordPress-based e-commerce sites, could prompt sensitive data exposure. The plugin’s unauthenticated insecure direct object references flaw, tracked as CVE-2023-34000, was caused by inadequate access control mechanism in its “payment_fields”

Source: SC Magazine

Date:

16 June 2023

Categorie(s):

NEWS

Tag(s):

Gateways, IT, News, Stripes

Europol op shutters 12 scam call centers and cuffs 21 suspected fraudsters3 May 2024
New “Goldoon” Botnet Hijacking D-Link Routers to Use for Other Attacks3 May 2024
Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks3 May 2024
Ransom recovery costs reach $2.73 million3 May 2024
Indonesia sneakily buys spyware, claims Amnesty International3 May 2024