Show filters
43 Total Results
Displaying 41-43 of 43
Sort by:
Attacker Value
Unknown

CVE-2019-15317

Disclosure Date: August 22, 2019 (last updated November 27, 2024)
The give plugin before 2.4.7 for WordPress has XSS via a donor name.
0
0
Attacker Value
Unknown

CVE-2019-13578

Disclosure Date: August 15, 2019 (last updated November 27, 2024)
A SQL injection vulnerability exists in the Impress GiveWP Give plugin through 2.5.0 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via includes/payments/class-payments-query.php.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2019-9909

Disclosure Date: March 22, 2019 (last updated November 27, 2024)
The "Donation Plugin and Fundraising Platform" plugin before 2.3.1 for WordPress has wp-admin/edit.php csv XSS.
0
0
View More Topics  < Previous