0.001 Low
EPSS
Percentile
41.6%
Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability discovered by JrXnm in WordPress GiveWP plugin (versions <= 2.17.2).
Update the WordPress GiveWP plugin to the latest available version (at least 2.17.3).
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25099
wordpress.org/plugins/give/#developers
wpscan.com/vulnerability/87a64b27-23a3-40f5-a3d8-0650975fee6f