Vulnerabilities > Givewp > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-08-22 CVE-2019-15317 Cross-site Scripting vulnerability in Givewp
The give plugin before 2.4.7 for WordPress has XSS via a donor name.
network
low complexity
givewp CWE-79
5.4
5.4
2019-03-22 CVE-2019-9909 Cross-site Scripting vulnerability in Givewp
The "Donation Plugin and Fundraising Platform" plugin before 2.3.1 for WordPress has wp-admin/edit.php csv XSS.
network
low complexity
givewp CWE-79
6.1
6.1