The GiveWP plugin for WordPress, which is used for donations and fundraising, has a security issue. This means that anyone can change the data without permission. This is because the plugin did not check for the right permissions. This can lead to unauthorized people making changes to event ticket settings, as long as the Events beta feature is turned on.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
