VYPR

Buy Me a Coffee – Button and Widget Plugin

by WordPress

CVEs (1)

  • CVE-2023-2078HigJul 11, 2023
    risk 0.47cvss 7.3epss 0.00

    The "Buy Me a Coffee – Button and Widget Plugin" plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability checks on the recieve_post, bmc_disconnect, name_post, and widget_post functions in versions up to, and including, 3.7. This makes…