PII Exposed: Unauthenticated IDOR in WooCommerce Stripe Plugin
The vulnerability affects versions 7.4.0 and below of the WordPress plugin
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
The vulnerability affects versions 7.4.0 and below of the WordPress plugin
Cybersecurity researchers have unearthed a new ongoing Magecart-style web skimmer campaign that's designed to steal personally identifiable information (PII) and credit card data from e-commerce websites
A newly discovered phishing kit targeting PayPal users is trying to steal a large set of personal information from victims that includes government identification documents and photos. [...]
WordPress has taken the rare step of force-updating the UpdraftPlus plugin on all sites to fix a high-severity vulnerability allowing website subscribers to download the latest database backups, which often contain credentials and PII. [...]
An oversight in a WordPress plug-in exposes PII and authentication data to malicious insiders.