MEDIUM
mra13
CVE published 2026-06-08
CVE-2021-47983
CVE-2021-47983 is a stored cross-site scripting (XSS) vulnerability in WordPress Plugin Stripe Payments version 2.0.39. The vulnerability allows authenticated attackers to inject malicious scripts through the `AcceptStripePayments-settings[currency_code]` parameter. Attackers can submit POST requests to `/wp-admin/options.php` with script payloads in the `currency_code` field to execute arbitrary JavaScri [truncated]