VYPR
Medium severity4.3NVD Advisory· Published Mar 22, 2026· Updated Apr 24, 2026

CVE-2026-4547

CVE-2026-4547

Description

A security vulnerability has been detected in mickasmt next-saas-stripe-starter 1.0.0. Affected is the function generateUserStripe of the file actions/generate-user-stripe.ts of the component Checkout Handler. The manipulation of the argument priceId leads to business logic errors. The attack may be initiated remotely.

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.