Medium severity4.8NVD Advisory· Published Aug 23, 2021· Updated Jun 17, 2026
CVE-2021-24524
CVE-2021-24524
Description
The GiveWP – Donation Plugin and Fundraising Platform WordPress plugin before 2.12.0 did not escape the Donation Level setting of its Donation Forms, allowing high privilege users to use Cross-Site Scripting payloads in them.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/GiveWP – Donation Plugin and Fundraising Platformdescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/5a4774ec-c0ee-4c6b-92a6-fa10821ec336nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.