CVE-2023-48286
CVSS 3.1 Score 8.2 of 10 (high)
Details
Published Dec 9, 2024
CWE ID 862
Summary
CVE-2023-48286 is a Missing Authorization vulnerability affecting Tips and Tricks HQ's wptipsntricks Stripe Payments module. The issue arises from incorrectly configured access control security levels, enabling unauthorized individuals to exploit the vulnerability. This vulnerability affects Stripe Payments versions from n/a to 2.0.79. Successful exploitation could lead to unauthorized access or modification of payment information. Organizations using the affected version are advised to update to a secure patch as soon as possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share