CVE-2023-52143

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 5, 2024
Updated: Feb 6, 2024
CWE ID 532

Summary

CVE-2023-52143 is a vulnerability affecting the NaaS (NinjaForms Add-on for Stripe Checkout) plugin for WordPress, specifically WP Stripe Checkout. The issue exposes sensitive information to unauthorized actors. Affected versions of the plugin range from the initial release through 1.2.2.37. This vulnerability could potentially allow attackers to gain access to customer payment information during checkout processes, posing a significant security risk. It is essential for users to update their WP Stripe Checkout plugin to the latest version to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share