CVE-2026-4547 in next-saas-stripe-starterinfo

Summary

by MITRE • 03/22/2026

A security vulnerability has been detected in mickasmt next-saas-stripe-starter 1.0.0. Affected is the function generateUserStripe of the file actions/generate-user-stripe.ts of the component Checkout Handler. The manipulation of the argument priceId leads to business logic errors. The attack may be initiated remotely.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Disclosure

03/22/2026

Moderation

accepted

Entry

VDB-352374

CPE

ready

CWE

CWE-840 (confirmed)

CVSS

4.3 (VulDB)

EPSS

0.00038

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-4547
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-4547
CVE Details	https://www.cvedetails.com/cve/CVE-2026-4547/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!