VYPR

Wp Full Stripe Free

by WordPress

Source repositories

CVEs (6)

  • CVE-2025-9322HigOct 25, 2025
    risk 0.49cvss 7.5epss 0.00

    The Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions plugin for WordPress is vulnerable to SQL Injection via the 'wpfs-form-name' parameter in all versions up to, and including, 8.3.1 due to insufficient escaping on the user supplied…

  • CVE-2025-58789HigSep 5, 2025
    risk 0.49cvss 7.6epss 0.00

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeisle WP Full Stripe Free wp-full-stripe-free allows SQL Injection.This issue affects WP Full Stripe Free: from n/a through <= 8.2.5.

  • CVE-2026-42378MedJun 15, 2026
    risk 0.42cvss 6.5epss 0.00

    Subscriber Broken Authentication in WP Full Stripe Free <= 8.4.1 versions.

  • CVE-2023-46088MedOct 26, 2023
    risk 0.38cvss 5.9epss 0.00

    Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Mammothology WP Full Stripe Free plugin <= 1.6.1 versions.

  • CVE-2023-28934MedAug 8, 2023
    risk 0.38cvss 5.9epss 0.00

    Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Mammothology WP Full Stripe Free plugin <= 1.6.1 versions.

  • CVE-2023-47667MedNov 18, 2023
    risk 0.28cvss 4.3epss 0.00

    Cross-Site Request Forgery (CSRF) vulnerability in Mammothology WP Full Stripe Free.This issue affects WP Full Stripe Free: from n/a through 7.0.16.

VYPR — Vulnerability Intelligence