Vulnerabilities (CVE)

Filtered by vendor Givewp Subscribe
Filtered by product Give
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-24315 1 Givewp 1 Give 2024-11-21 3.5 LOW 4.8 MEDIUM
The GiveWP – Donation Plugin and Fundraising Platform WordPress plugin before 2.10.4 did not sanitise or escape the Background Image field of its Stripe Checkout Setting and Logo field in its Email settings, leading to authenticated (admin+) Stored XSS issues.
CVE-2021-24213 1 Givewp 1 Give 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The GiveWP – Donation Plugin and Fundraising Platform WordPress plugin before 2.10.0 was affected by a reflected Cross-Site Scripting vulnerability inside of the administration panel, via the 's' GET parameter on the Donors page.
CVE-2019-9909 1 Givewp 1 Give 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The "Donation Plugin and Fundraising Platform" plugin before 2.3.1 for WordPress has wp-admin/edit.php csv XSS.