Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-24315 | 1 Givewp | 1 Give | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
The GiveWP – Donation Plugin and Fundraising Platform WordPress plugin before 2.10.4 did not sanitise or escape the Background Image field of its Stripe Checkout Setting and Logo field in its Email settings, leading to authenticated (admin+) Stored XSS issues. | |||||
CVE-2021-24213 | 1 Givewp | 1 Give | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
The GiveWP – Donation Plugin and Fundraising Platform WordPress plugin before 2.10.0 was affected by a reflected Cross-Site Scripting vulnerability inside of the administration panel, via the 's' GET parameter on the Donors page. | |||||
CVE-2019-9909 | 1 Givewp | 1 Give | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
The "Donation Plugin and Fundraising Platform" plugin before 2.3.1 for WordPress has wp-admin/edit.php csv XSS. |