Missing Authorization vulnerability in WooCommerce Stripe Payment Gateway
CVE-2023-35049
9.8CRITICAL
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 19 June 2024
What is CVE-2023-35049?
A missing authorization vulnerability in the WooCommerce Stripe Payment Gateway poses significant risks, allowing unauthorized users to gain access without the necessary permissions. This issue affects users from earlier versions up to 7.4.0, making it crucial for businesses to stay vigilant about plugin updates and security patches to mitigate potential exploitation.
Affected Version(s)
WooCommerce Stripe Payment Gateway <= 7.4.0