VYPR

Gift Certificate Creator

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-2483MedApr 2, 2025
    risk 0.40cvss 6.1epss 0.00

    The Gift Certificate Creator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘receip_address’ parameter in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping. This makes it possible for…

  • CVE-2017-1002017MedSep 14, 2017
    risk 0.40cvss 6.1epss 0.01

    Vulnerability in wordpress plugin gift-certificate-creator v1.0, The code in gc-list.php doesn't sanitize user input to prevent a stored XSS vulnerability.