CVE-2023-52143
CVSS 3.1 Score 7.5 of 10 (high)
Details
Summary
CVE-2023-52143 is a vulnerability affecting the NaaS (NinjaForms Add-on for Stripe Checkout) plugin for WordPress, specifically WP Stripe Checkout. The issue exposes sensitive information to unauthorized actors. Affected versions of the plugin range from the initial release through 1.2.2.37. This vulnerability could potentially allow attackers to gain access to customer payment information during checkout processes, posing a significant security risk. It is essential for users to update their WP Stripe Checkout plugin to the latest version to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.