Vulnerabilities > Givewp > Givewp > 2.24.2

DATE CVE VULNERABILITY TITLE RISK
2024-02-10 CVE-2023-51415 Cross-site Scripting vulnerability in Givewp
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform allows Stored XSS.This issue affects GiveWP – Donation Plugin and Fundraising Platform: from n/a through 3.2.2.
network
low complexity
givewp CWE-79
5.4
5.4
2024-01-11 CVE-2023-4246 Cross-Site Request Forgery (CSRF) vulnerability in Givewp
The GiveWP plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.33.3.
network
low complexity
givewp CWE-352
4.3
4.3
2024-01-11 CVE-2023-4247 Cross-Site Request Forgery (CSRF) vulnerability in Givewp
The GiveWP plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.33.3.
network
low complexity
givewp CWE-352
5.4
5.4
2024-01-11 CVE-2023-4248 Cross-Site Request Forgery (CSRF) vulnerability in Givewp
The GiveWP plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.33.3.
network
low complexity
givewp CWE-352
4.3
4.3
2023-12-28 CVE-2023-32513 Deserialization of Untrusted Data vulnerability in Givewp
Deserialization of Untrusted Data vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform.This issue affects GiveWP – Donation Plugin and Fundraising Platform: from n/a through 2.25.3.
network
low complexity
givewp CWE-502
critical
 9.8
9.8
2023-12-18 CVE-2022-40312 Server-Side Request Forgery (SSRF) vulnerability in Givewp
Server-Side Request Forgery (SSRF) vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform.This issue affects GiveWP – Donation Plugin and Fundraising Platform: from n/a through 2.25.1.
network
low complexity
givewp CWE-918
6.5
6.5
2023-11-07 CVE-2023-22719 Improper Neutralization of Formula Elements in a CSV File vulnerability in Givewp
Improper Neutralization of Formula Elements in a CSV File vulnerability in GiveWP.This issue affects GiveWP: from n/a through 2.25.1.
network
low complexity
givewp CWE-1236
critical
 9.8
9.8
2023-06-15 CVE-2023-25450 Cross-Site Request Forgery (CSRF) vulnerability in Givewp
Cross-Site Request Forgery (CSRF) vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform plugin <= 2.25.1 versions.
network
low complexity
givewp CWE-352
8.8
8.8
2023-05-08 CVE-2023-23668 Cross-site Scripting vulnerability in Givewp
Auth.
network
low complexity
givewp CWE-79
5.4
5.4