VYPR

Blood Donation, Request And Donor Management System

by IDonate

Source repositories

CVEs (2)

  • CVE-2025-4522Nov 7, 2025
    risk 0.00cvss epss 0.00

    The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to Insecure Direct Object Reference via the admin_post_donor_delete() function in versions 2.0.0 to 2.1.9. By supplying an arbitrary user_id parameter value to the…

  • CVE-2025-4519Nov 7, 2025
    risk 0.00cvss epss 0.00

    The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the idonate_donor_password() function in versions 2.1.5 to 2.1.9. This makes it possible for authenticated…

VYPR — Vulnerability Intelligence