Infosecurity-magazine.com

PII Exposed: Unauthenticated IDOR in WooCommerce Stripe Plugin

A critical security vulnerability has been discovered in the popular WooCommerce Stripe Gateway plugin, potentially exposing users’ personally identifiable information (PII). The vulnerability, an ...
Bleeping Computer

WordPress Stripe payment plugin bug leaks customer order details

The WooCommerce Stripe Gateway plugin for WordPress was found to be vulnerable to a bug that allows any unauthenticated user to view order details placed through the plugin. WooCommerce Stripe Payment ...