Woocommerce Gateway Stripe

CVEs (1)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2026-2381	WordPress WooCommerce Payment Gateway	Med	0.35	6.5	—		Jun 16, 2026	The WooCommerce Stripe Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the `ajax_pay_for_order()` function in all versions up to, and including, 10.7.0 This is due to a missing order ownership or…

CVE-2026-2381MedJun 16, 2026
WordPress
WooCommerce Payment Gateway
risk 0.35cvss 6.5epss —
The WooCommerce Stripe Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the `ajax_pay_for_order()` function in all versions up to, and including, 10.7.0 This is due to a missing order ownership or…