The WPForms plugin for WordPress exposes websites to a vulnerability that allows attackers to update subscriptions and issue refunds. This flaw enables attackers to modify data they normally should ...
Hosted on MSN
Security flaw in top WordPress plugin could allow for Stripe refunds on millions of sites
Security researchers found a flaw in WPForms, a popular WordPress plugin for forms The bug allows malicious actors to ask for Stripe refunds and cancel certain subscriptions Developers were notified, ...
A vulnerability in WPForms, a WordPress plugin used in over 6 million websites, could allow subscriber-level users to issue arbitrary Stripe refunds or cancel subscriptions. Tracked under ...
Attackers can abuse a loophole in the Wordpress plug-in WPForms to reverse payments, for example. Six million websites use the plug-in. The Wordpress plug-in WPForms is one of the most popular ...
A vulnerability advisory was issued for a WordPress plugin that saves contact form submissions. The flaw enables unauthenticated attackers to delete files, launch a denial of service attack, or ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback