WordPress WhyDonate - FREE Donate button - Crowdfunding - Fundraising plugin <= 4.0.15 - Missing Authorization to Unauthenticated wp_wdplugin_style Rww Deletion vulnerability

WordPress WhyDonate - FREE Donate button - Crowdfunding - Fundraising plugin = 4.0.15 - Missing Authorization to Unauthenticated wpwdpluginstyle Rww Deletion vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin Whydonate versions = 4.0.15...

CVE-2025-49899

Missing Authorization vulnerability in jjlemstra Whydonate wp-whydonate allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Whydonate: from n/a through = 4.0.15...

CVE-2025-49899

CVE-2025-49899 is a Missing Authorization vulnerability in the WordPress plugin Whydonate (wp-whydonate), affecting versions from n/a through 4.0.15. The issue allows access to functionality not properly constrained by ACLs. Public sources in the provided documents identify the vulnerability with...

CVE-2025-49899 WordPress Whydonate plugin <= 4.0.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in jjlemstra Whydonate wp-whydonate allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Whydonate: from n/a through = 4.0.15...

WordPress Whydonate plugin <= 4.0.15 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Whydonate versions = 4.0.15...

CVE-2025-10186 WhyDonate – FREE Donate button – Crowdfunding – Fundraising <= 4.0.14 - Missing Authorization to Unauthenticated wp_wdplugin_style Rww Deletion

The WhyDonate – FREE Donate button – Crowdfunding – Fundraising plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the removerow function in all versions up to, and including, 4.0.14. This makes it possible for unauthenticated attackers to delete...

CVE-2025-10186 WhyDonate – FREE Donate button – Crowdfunding – Fundraising <= 4.0.15 - Missing Authorization to Unauthenticated wp_wdplugin_style Rww Deletion

The WhyDonate – FREE Donate button – Crowdfunding – Fundraising plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the removerow function in all versions up to, and including, 4.0.15. This makes it possible for unauthenticated attackers to delete...

EUVD-2025-34562

The WhyDonate – FREE Donate button – Crowdfunding – Fundraising plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the removerow function in all versions up to, and including, 4.0.14. This makes it possible for unauthenticated attackers to delete...

CVE-2025-10186

CVE-2025-10186 affects the WordPress plugin “WhyDonate – FREE Donate button – Crowdfunding – Fundraising”. The vulnerability is an unauthorized data loss due to a missing capability check in the remove_row function, applicable to all versions up to and including 4.0.14. Unauthenticated attackers ...

WordPress plugin WhyDonate 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

EUVD-2023-32815

Malicious code in bioql PyPI...

CVE-2023-29238

Cross-Site Request Forgery CSRF vulnerability in Whydonate Whydonate – FREE Donate button – Crowdfunding – Fundraising plugin = 3.12.15 versions...

CVE-2023-29238

Cross-Site Request Forgery CSRF vulnerability in Whydonate Whydonate – FREE Donate button – Crowdfunding – Fundraising plugin = 3.12.15 versions...

PT-2023-22215 · WordPress · Whydonate

Name of the Vulnerable Software and Affected Versions: Whydonate Whydonate – FREE Donate button – Crowdfunding – Fundraising plugin versions = 3.12.15 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a use...