Givewp Givewp %e2%80%93 Donation Plugin And Fundraising Platform Vulnerabilities

Cross-site Scripting (XSS) Vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform

CVE-2023-51415

GiveWPGiveWP – Donation Plug...6.5MEDIUM

WordPress GiveWP Plugin <= 2.25.3 is vulnerable to PHP Object Injection

CVE-2023-32513

GiveWPGiveWP – Donation Plug...7.5HIGH

WordPress GiveWP Plugin <= 2.25.1 is vulnerable to Server Side Request Forgery (SSRF)

CVE-2022-40312

GiveWPGiveWP – Donation Plug...5.5MEDIUM

WordPress GiveWP Plugin <= 2.25.1 is vulnerable to Cross Site Request Forgery (CSRF)

CVE-2023-25450

GiveWPGiveWP – Donation Plug...5.4MEDIUM

GiveWP < 2.21.3 - DoS via CSRF

CVE-2022-2260

GiveWPGiveWP – Donation Plug...6.5MEDIUM

GiveWP < 2.21.3 - Admin+ Stored Cross-Site Scripting

CVE-2022-2215

GiveWPGiveWP – Donation Plug...4.8MEDIUM

Give < 2.17.3 - Reflected Cross-Site Scripting via Import Tool

CVE-2022-0252

GiveWPGiveWP – Donation Plug...6.1MEDIUM

Give < 2.17.3 - Reflected Cross-Site Scripting via Donation Forms Dashboard

CVE-2021-25100

GiveWPGiveWP – Donation Plug...6.1MEDIUM

Give < 2.17.3 - Unauthenticated Reflected Cross-Site Scripting

CVE-2021-25099

GiveWPGiveWP – Donation Plug...6.1MEDIUM

GiveWP < 2.12.0 - Authenticated Stored XSS

CVE-2021-24524

GiveWPGiveWP – Donation Plug...4.8MEDIUM

Give WP < 2.10.4 - Authenticated Stored Cross-Site Scripting (XSS)

CVE-2021-24315

GiveWPGiveWP – Donation Plug...4.8MEDIUM

GiveWP < 2.10.0 - Reflected Cross Site Scripting (XSS)

CVE-2021-24213

GiveWPGiveWP – Donation Plug...6.1MEDIUM

Givewp %e2%80%93 Donation Plugin And Fundraising Platform Vulnerabilities

Vulnerability Published:

Sort By:

10 February 2024

Cross-site Scripting (XSS) Vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform

28 December 2023

WordPress GiveWP Plugin <= 2.25.3 is vulnerable to PHP Object Injection

18 December 2023

WordPress GiveWP Plugin <= 2.25.1 is vulnerable to Server Side Request Forgery (SSRF)

15 June 2023

WordPress GiveWP Plugin <= 2.25.1 is vulnerable to Cross Site Request Forgery (CSRF)

1 August 2022

GiveWP < 2.21.3 - DoS via CSRF

GiveWP < 2.21.3 - Admin+ Stored Cross-Site Scripting

21 February 2022

Give < 2.17.3 - Reflected Cross-Site Scripting via Import Tool

Give < 2.17.3 - Reflected Cross-Site Scripting via Donation Forms Dashboard

Give < 2.17.3 - Unauthenticated Reflected Cross-Site Scripting

23 August 2021

GiveWP < 2.12.0 - Authenticated Stored XSS

17 May 2021

Give WP < 2.10.4 - Authenticated Stored Cross-Site Scripting (XSS)

12 April 2021

GiveWP < 2.10.0 - Reflected Cross Site Scripting (XSS)