When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
The bug allows users with low-level accounts to issue arbitrary Stripe refunds, or cancel different subscriptions.
It is now tracked as CVE-2024-11205, and was assigned a severity score of 8.5 (high).
WordPress is the worlds most popularwebsite builder platform.
It powers roughly half of the worlds internet sites, and as such is a major target for cybercriminals.
Paid plugins are usually considered safer, since they have a dedicated team that maintains the code.
ViaBleepingComputer
