Vulnerabilities > Givewp > Givewp > 2.24.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-10 | CVE-2023-51415 | Cross-site Scripting vulnerability in Givewp Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform allows Stored XSS.This issue affects GiveWP – Donation Plugin and Fundraising Platform: from n/a through 3.2.2. | 5.4 |
2024-01-11 | CVE-2023-4246 | Cross-Site Request Forgery (CSRF) vulnerability in Givewp The GiveWP plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.33.3. | 4.3 |
2024-01-11 | CVE-2023-4247 | Cross-Site Request Forgery (CSRF) vulnerability in Givewp The GiveWP plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.33.3. | 5.4 |
2024-01-11 | CVE-2023-4248 | Cross-Site Request Forgery (CSRF) vulnerability in Givewp The GiveWP plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.33.3. | 4.3 |
2023-12-28 | CVE-2023-32513 | Deserialization of Untrusted Data vulnerability in Givewp Deserialization of Untrusted Data vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform.This issue affects GiveWP – Donation Plugin and Fundraising Platform: from n/a through 2.25.3. | 9.8 |
2023-12-18 | CVE-2022-40312 | Server-Side Request Forgery (SSRF) vulnerability in Givewp Server-Side Request Forgery (SSRF) vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform.This issue affects GiveWP – Donation Plugin and Fundraising Platform: from n/a through 2.25.1. | 6.5 |
2023-11-07 | CVE-2023-22719 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Givewp Improper Neutralization of Formula Elements in a CSV File vulnerability in GiveWP.This issue affects GiveWP: from n/a through 2.25.1. | 9.8 |
2023-06-15 | CVE-2023-25450 | Cross-Site Request Forgery (CSRF) vulnerability in Givewp Cross-Site Request Forgery (CSRF) vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform plugin <= 2.25.1 versions. | 8.8 |
2023-05-08 | CVE-2023-23668 | Cross-site Scripting vulnerability in Givewp Auth. | 5.4 |