The GiveWP plugin for WordPress is not secure in versions up to 2.33.3. This means that an unauthorized person could deactivate the plugin’s stripe integration settings without having the correct permissions. This could be done by getting a site administrator to click on a link or take some other action.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
