CVE-2025-49963

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in growniche Simple Stripe Checkout simple-stripe-checkout allows Reflected XSS.This issue affects Simple Stripe Checkout: from n/a through <= 1.1.28. More information : https://vdp.patchstack.com/database/Wordpress/Plugin/simple-stripe-checkout/vulnerability/wordpress-simple-stripe-checkout-plugin-1-1-28-cross-site-scripting-xss-vulnerability