VYPR

Donation Plugin And Fundraising Platform

by WordPress

CVEs (3)

  • CVE-2023-51415MedFeb 10, 2024
    risk 0.42cvss 6.5epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform allows Stored XSS.This issue affects GiveWP – Donation Plugin and Fundraising Platform: from n/a through 3.2.2.

  • CVE-2019-9909MedMar 22, 2019
    risk 0.40cvss 6.1epss 0.01

    The "Donation Plugin and Fundraising Platform" plugin before 2.3.1 for WordPress has wp-admin/edit.php csv XSS.

  • CVE-2021-24315MedMay 17, 2021
    risk 0.31cvss 4.8epss 0.01

    The GiveWP – Donation Plugin and Fundraising Platform WordPress plugin before 2.10.4 did not sanitise or escape the Background Image field of its Stripe Checkout Setting and Logo field in its Email settings, leading to authenticated (admin+) Stored XSS issues.