Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Vulnerability in WPForms Plugins Affects 6 Million WordPress Sites, Enables Payment Refund and Subscription Cancellation
Malware and Vulnerabilities
December 10, 2024
Wordfence
The vulnerability, assigned a CVSS v3.1 base score of 8.5, allowed authenticated attackers with subscriber-level privileges or higher to execute unauthorized refunds of Stripe payments and cancellations of Stripe subscriptions.
Read More
Wordpress Sites
WPForms Plugin
Payment Refund
Subscription Cancellation
CVE-2024-11205
Publisher
Previous
SAP Issues Critical Patch for NetWeaver AS for JAVA
Malware and Vulnerabilities
Next
Cybercrime gang arrested after turning Airbnbs into fra ...
Incident Response, Learnings
/https://cyware-ent.s3.amazonaws.com/image_bank/5a3e_shutterstock_2123149958.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_172057055.jpg)
