This information is sourced from wpvulnerabilities.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
The GiveWP plugin, used for donations and fundraising on WordPress, has a security issue that allows unauthorized changes to data. This is because the plugin does not check for the right permission b...
Read MoreThe GiveWP plugin for WordPress, which is used for accepting donations and fundraising, has a security issue. This problem, which affects all versions of the plugin up to 4.6.0, allows hackers to acc...
Read MoreThe GiveWP donation plugin and fundraising platform for WordPress has a security vulnerability that allows attackers to inject harmful code through the donor notes section. This can only be done by a...
Read MoreThe GiveWP plugin, used for donations and fundraising on WordPress, has a security vulnerability that allows unauthorized users to view and change data. This issue affects all versions up to 4.3.0, a...
Read MoreThe GiveWP plugin for WordPress, which helps with donations and fundraising, has a security issue. This means that anyone with at least Subscriber-level access can see private information, such as re...
Read MoreThe GiveWP plugin for WordPress, which helps with donations and fundraising, has a security issue. This means that people who are not supposed to can access important data through the give_reports_ea...
Read MoreA plugin called "Donations Widget" for WordPress has a security issue that makes it vulnerable to attacks. This can happen when someone enters information into the donation form, specifically in the ...
Read MoreThe GiveWP plugin for WordPress, which is used for donations and fundraising, has a security vulnerability that allows attackers to inject harmful scripts into web pages. This can happen if a user cl...
Read MoreThe donation plugin for WordPress called GiveWP is at risk of being attacked by hackers in versions up to 3.19.2. This can happen through the donation form where someone can enter their first name. T...
Read MoreThe GiveWP donation plugin for WordPress has a security vulnerability that allows attackers to inject malicious code through the donation form. This could potentially lead to remote code execution an...
Read MoreThe GiveWP Donation Plugin and Fundraising Platform plugin for WordPress has a security issue that could allow attackers to inject malicious code and gain access to the site. This vulnerability affec...
Read MoreThe GiveWP plugin for WordPress has a security vulnerability in versions 3.15.1 and below. This means that unauthorized individuals can make a request that they should not be able to, if they can con...
Read MoreThe GiveWP donation plugin for WordPress has a security issue that can allow hackers to inject malicious code and potentially delete files and gain remote access. This vulnerability was mostly fixed ...
Read MoreThe GiveWP donation plugin for WordPress has a security vulnerability that allows attackers to access sensitive information from the database by manipulating the 'order' parameter. This vulnerability...
Read MoreThe GiveWP donation plugin for WordPress has a flaw that makes it vulnerable to Full Path Disclosure. This means that attackers can access the full path of the website, but they would need another vu...
Read MoreThe GiveWP plugin for WordPress, which is used for donations and fundraising, has a security issue. This means that anyone can change the data without permission. This is because the plugin did not c...
Read MoreThe GiveWP plugin for WordPress, which allows for donations and fundraising, has a security issue that could allow unauthorized individuals to access and delete data. This is because the plugin does ...
Read MoreThe GiveWP Donation Plugin and Fundraising Platform for WordPress has a security vulnerability where untrusted information can be used to inject a PHP Object. This can be exploited by unauthorized in...
Read MoreThe GiveWP plugin for WordPress has a security issue that allows unauthorized users to access sensitive data. This is because the 'setup_wizard' function does not have a proper check for user permiss...
Read MoreThe GiveWP plugin, used for donations and fundraising on WordPress, has a security issue in versions up to 3.13.0. This is due to a lack of validation on a key that can be controlled by the user. Thi...
Read MoreThe GiveWP - Donation Plugin and Fundraising Platform for WordPress has a security issue. This means that unauthenticated attackers can potentially inject harmful scripts into web pages, if they can ...
Read MoreThe GiveWP – Donation Plugin and Fundraising Platform for WordPress has a security issue that allows attackers to insert harmful code into certain pages. This can happen when using an older version...
Read MoreThe GiveWP plugin for WordPress has a security vulnerability that can be exploited by attackers. This vulnerability, known as PHP Object Injection, exists in all versions of the plugin up to 3.4.2. T...
Read MoreThe GiveWP plugin, used for donations and fundraising on WordPress, has a security issue that could allow attackers to insert harmful code into pages. This can happen if the attacker has contributor-...
Read MoreThe GiveWP plugin for WordPress has a security issue that allows attackers to inject harmful web scripts into pages. This can happen if they can trick a user into clicking on a link. This vulnerabili...
Read MoreThe GiveWP plugin for WordPress, which helps with donations and fundraising, has a security issue. This means that hackers with certain permissions can insert harmful scripts into pages, which will r...
Read MoreThe GiveWP plugin for WordPress has a security issue that allows hackers to inject harmful web scripts into pages. This can happen because the plugin does not properly clean or protect the input and ...
Read MoreThe GiveWP plugin, which is used for WordPress websites, had a security flaw in versions up to and including 2.33.1. This flaw meant that it was possible for someone to access a donation form without...
Read MoreThe GiveWP plugin for WordPress is vulnerable to a type of attack called Cross-Site Request Forgery in versions 2.33.3 and earlier. This type of attack occurs when someone tricks a website administra...
Read MoreThe GiveWP plugin, used in WordPress websites, is vulnerable to a type of attack called Cross-Site Request Forgery in versions up to and including 2.33.3. This is because there is no security measure...
Read MoreThe GiveWP plugin for WordPress is not secure in versions up to 2.33.3. This means that an unauthorized person could deactivate the plugin's stripe integration settings without having the correct per...
Read MoreThe Give - Donation Plugin for WordPress, up to version 2.33.0, is vulnerable to a security issue that could allow attackers to gain access to higher levels of privileges than they should have. If an...
Read MoreThe GiveWP plugin
Read MoreThe ""Donation Plugin and Fundraising Platform"" plugin
Read More(XSS) vulnerability.
Read MoreThe plugin GiveWP for WordPress, up to and including version 2.25.2, has a security vulnerability. This vulnerability is called Cross-Site Request Forgery, and it happens because the plugin does not ...
Read MoreThe GiveWP plugin for WordPress is not secure in versions up to 2.25.1. People with contributor-level permissions (and above) are able to put malicious code on pages which can be executed when someone...
Read MoreThe GiveWP plugin, up to and including version 2.25.1, is vulnerable to Cross-Site Request Forgery. This is because there is a lack of or incorrect nonce validation on the 'save' AJAX function. This ...
Read MoreThe GiveWP plugin for WordPress is not secure in versions up to 2.25.1. This means someone outside of the website can perform an action without being logged in, such as forcing the website to empty i...
Read MoreThe previous version of the plugin for WordPress (2.4.7) had a security vulnerability that allowed someone to perform a malicious activity called Cross-Site Scripting (XSS) by adding their name to a d...
Read MoreThe GiveWP plugin for WordPress has a security problem in versions up to 2.25.1. If someone with enough access to the website (like an author or higher) uses the plugin
Read MoreThe GiveWP plugin for WordPress had a problem that allowed people to view private information about donors
Read More(XSS) vulnerability
Read MoreThe GiveWP plugin for WordPress has a security issue that could allow someone with access to the website to delete content. This security issue affects all versions of the GiveWP plugin up until versi...
Read MoreThe GiveWP plugin, up to and including version 2.25.1, is vulnerable to Cross-Site Request Forgery attacks. This means that unauthenticated attackers can make a website administrator perform certain ...
Read MoreGiveWP is a plugin for WordPress websites. In versions up to and including 2.25.2, there is a security vulnerability called Cross-Site Request Forgery. This means that if an unauthenticated attacker ...
Read MoreGiveWP is a WordPress plugin and fundraising platform. Before version 2.10.4
Read MoreThe GiveWP plugin for WordPress has a security vulnerability which makes it possible for unauthorized people to gain access to confidential information from the database. This vulnerability affects v...
Read MoreThe GiveWP Donation Plugin and Fundraising Platform
Read MoreThe GiveWP plugin through version 2.5.9 for WordPress has a security issue that allows someone to change settings without being authorized to do so.
Read MoreThe GiveWP plugin for WordPress is vulnerable to a security issue. Versions up to and including 2.25.3 are affected. This plugin is used to add features to a WordPress website. The security issue is ...
Read More(XSS) vulnerability
Read MoreThe GiveWP plugin for WordPress has a security issue in versions up to 2.25.1. Attackers can exploit this security issue to insert malicious code into the CSV files that the plugin exports. If someone...
Read MoreGiveWP for WordPress is vulnerable to a type of attack called Cross-Site Request Forgery in versions up to and including 2.25.2. This means that if a malicious actor can trick an administrator into c...
Read MoreThe GiveWP plugin version 2.20.2 and lower
Read MoreThe GiveWP WordPress plugin before version 2.21.3 had a security issue that could have allowed high-privilege users such as admins to perform stored cross-site scripting attacks. This was possible bec...
Read MoreThe GiveWP plugin is a tool used with the WordPress platform that helps people collect donations. Before version 2.12.0
Read MoreA security issue in Give before version 2.5.5
Read MoreThe GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is not secure in versions before 0.8.5. Attackers can take advantage of this by using a technique called Cross-Site Script...
Read MoreThe GiveWP plugin for WordPress has a security issue in versions 2.21.2 and below. This issue means that if someone can get an administrator
Read MoreThe GiveWP plugin
Read MoreThe GiveWP plugin, which is used by some website owners, has a security flaw in versions up to and including 2.25.1. This issue occurs because the plugin was not properly protecting against Cross-Sit...
Read More