Lucene search
+L

35 matches found

ATTACKERKB
ATTACKERKB
added yesterday5 views

CVE-2026-14987

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'twittermessage' Sequoia Template Setting in all versions up to, and including, 4.16.3 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS6.2AI score0.00206EPSS
Exploits0References9
CVE
CVE
added 2026/07/01 4:32 a.m.20 views

CVE-2026-11981

The CVE-2026-11981 entry concerns the WordPress GiveWP plugin (affected: versions up to 4.15.3) with a Cross-Site Request Forgery vulnerability due to missing nonce validation in give_set_notification_status_handler(). This allows unauthenticated attackers to disable donation email notifications ...

4.3CVSS5.6AI score0.00154EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.12 views

PT-2026-49366

Unauthenticated Cross Site Scripting XSS in GiveWP = 4.14.2 versions...

7.1CVSS5.1AI score0.00175EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/29 12:0 a.m.11 views

WordPress Plugin GiveWP 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.3CVSS5.8AI score0.00191EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 3:14 p.m.4 views

CVE-2025-67467

Cross-Site Request Forgery CSRF vulnerability in StellarWP GiveWP give allows Cross Site Request Forgery.This issue affects GiveWP: from n/a through = 4.13.1...

5.4CVSS6.9AI score0.00108EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.5 views

EUVD-2025-201953

Cross-Site Request Forgery CSRF vulnerability in StellarWP GiveWP give allows Cross Site Request Forgery.This issue affects GiveWP: from n/a through = 4.13.1...

4.5CVSS6.3AI score0.00108EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-12012

Malware in sbrugna...

6.1CVSS6.1AI score0.00866EPSS
Exploits2References3
Patchstack
Patchstack
added 2025/10/03 11:51 p.m.10 views

WordPress GiveWP – Donation Plugin and Fundraising Platform plugin <= 4.10.0 - Missing Authorization to Unauthenticated Forms-Campaign Association vulnerability

Missing Authorization to Unauthenticated Forms-Campaign Association vulnerability discovered by Rafshanzani Suhada in WordPress Plugin GiveWP versions = 4.10.0...

5.3CVSS6.7AI score0.00272EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-28160

Malicious code in bioql PyPI...

8CVSS6.5AI score0.00622EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2023-51316

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00411EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-24228

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.00238EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-43510

Malicious code in bioql PyPI...

5.9CVSS9.2AI score0.00423EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-54117

Malicious code in bioql PyPI...

4.3CVSS6.1AI score0.00237EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-26848

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00629EPSS
Exploits0References1
NVD
NVD
added 2025/08/12 7:15 a.m.4 views

CVE-2025-47444

Missing Authorization vulnerability in Damian Góra FiboSearch ajax-search-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FiboSearch: from n/a through = 1.32.1...

5.3CVSS0.00238EPSS
Exploits0References1
OSV
OSV
added 2025/08/12 7:15 a.m.4 views

CVE-2025-47444

Insertion of Sensitive Information Into Sent Data vulnerability in Liquid Web GiveWP allows Retrieve Embedded Sensitive Data.This issue affects GiveWP: from n/a before 4.6.1...

7.5CVSS7.1AI score
Exploits0References2
Cvelist
Cvelist
added 2025/08/12 6:37 a.m.11 views

CVE-2025-47444 WordPress FiboSearch plugin <= 1.32.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Damian Góra FiboSearch ajax-search-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FiboSearch: from n/a through = 1.32.1...

5.3CVSS0.00238EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/19 12:0 a.m.4 views

WordPress plugin GiveWP 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

5.4CVSS6.4AI score0.00259EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/05/23 4:44 a.m.9 views

CVE-2023-22719

Improper Neutralization of Formula Elements in a CSV File vulnerability in GiveWP.This issue affects GiveWP: from n/a through 2.25.1...

9.8CVSS8.6AI score0.00629EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:17 a.m.11 views

CVE-2023-41665

Improper Privilege Management vulnerability in GiveWP allows Privilege Escalation.This issue affects GiveWP: from n/a through 2.33.0...

8.8CVSS6.9AI score0.00605EPSS
Exploits0
Rows per page
Query Builder