The WP Donate plugin is a tool used to add a donation feature to WordPress websites. It has a security flaw in the versions up to 1.4 where an attacker can gain access to sensitive information stored in the database. This is done by taking advantage of insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
