Report
The Accept Stripe Payments plugin for WordPress is vulnerable to Content Injection in all versions up to, and including, 2.0.79. This is due to payment data not properly being sanitized in the get_billing_details() function. This makes it possible for unauthenticated attackers to inject arbitrary content into pages.
Score:5.3
Severity:Medium
Version: 2.0.79
There is a patch available in v2.0.80 and we strongly recommend you update to this version as soon as possible.
