Accept Donations with PayPal <= 1.5.2 - Open Redirect

The Accept Donations with PayPal & Stripe plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 1.5.2. This is due to insufficient validation on the redirect url supplied. This makes it possible for unauthenticated attackers to redirect users to potentially...

EUVD-2025-205233

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Scott Paterson Accept Donations with PayPal easy-paypal-donation allows Phishing.This issue affects Accept Donations with PayPal: from n/a through = 1.5.1...

CVE-2025-68602

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Scott Paterson Accept Donations with PayPal & Stripe easy-paypal-donation allows Phishing.This issue affects Accept Donations with PayPal & Stripe: from n/a through = 1.5.2...

CVE-2025-68602 WordPress Accept Donations with PayPal plugin <= 1.5.2 - Open Redirection vulnerability

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Scott Paterson Accept Donations with PayPal & Stripe easy-paypal-donation allows Phishing.This issue affects Accept Donations with PayPal & Stripe: from n/a through = 1.5.2...

WordPress plugin Accept Donations with PayPal 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

EUVD-2021-11901

Malware in sbrugna...

EUVD-2025-13810

Malicious code in bioql PyPI...

CVE-2025-47517

Cross-Site Request Forgery CSRF vulnerability in Scott Paterson Accept Donations with PayPal & Stripe easy-paypal-donation allows Stored XSS.This issue affects Accept Donations with PayPal & Stripe: from n/a through = 1.4.5...

CVE-2025-47517

Cross-Site Request Forgery CSRF vulnerability in Scott Paterson Accept Donations with PayPal & Stripe easy-paypal-donation allows Stored XSS.This issue affects Accept Donations with PayPal & Stripe: from n/a through = 1.4.5...

CVE-2025-47517 WordPress Accept Donations with PayPal plugin <= 1.4.5 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Scott Paterson Accept Donations with PayPal allows Stored XSS. This issue affects Accept Donations with PayPal: from n/a through 1.4.5...

CVE-2025-47517 WordPress Accept Donations with PayPal plugin <= 1.4.5 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Scott Paterson Accept Donations with PayPal & Stripe easy-paypal-donation allows Stored XSS.This issue affects Accept Donations with PayPal & Stripe: from n/a through = 1.4.5...

CVE-2025-47517

CVE-2025-47517 describes a CSRF to Stored XSS vulnerability in the WordPress plugin Accept Donations with PayPal, affecting versions up to 1.4.5. The issue requires user interaction and the attacker may trigger a stored XSS via a CSRF, as indicated by CVSS vectors (UI:R, AV:N, AC:L, PR:N, S:C, C:...

WordPress Accept Donations with PayPal plugin <= 1.4.4 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by Luciano Hanna in WordPress Plugin Accept Donations with PayPal & Stripe versions = 1.4.4...

CVE-2024-13728

The CVE CVE-2024-13728 concerns the WordPress plugin Accept Donations with PayPal & Stripe, affected up to version 1.4.4. It describes a Reflected Cross-Site Scripting (XSS) vulnerability exploitable via the rf parameter, allowing unauthenticated attackers to inject web scripts in pages that are ...

WordPress plugin Accept Donations with PayPal & Stripe 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPre...

CVE-2021-24989

Summary (CVE-2021-24989) : The WordPress plugin “Accept Donations with PayPal” is vulnerable in versions prior to 1.3.4 due to missing CSRF protection and inadequate verification that the target post belongs to the plugin. This enables a logged-in admin to delete arbitrary posts via a CSRF abuse ...

WordPress Accept Donations with PayPal plugin cross-site scripting vulnerability

WordPress is a set of blogging platforms developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. WordPress Accept Donations with PayPal plugin has a cross-site scripting vulnerability in versions prior to 1.3.2, which stems...

CVE-2021-24815

The CVE-2021-24815 entry concerns the WordPress plugin “Accept Donations with PayPal” (pre-1.3.2). The vulnerability arises from insufficient escaping of the Amount Menu Name field when creating Buttons, enabling stored Cross-Site Scripting that could be exploited by a high-privilege user. No exp...

WordPress Accept Donations with PayPal plugin cross-site request forgery vulnerability

WordPress is the WordPress Foundation's suite of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress Accept Donations with PayPal plugin in versions prior to 1.3.1 has a cross-site request forgery...

Cross site scripting

The Accept Donations with PayPal WordPress plugin before 1.3.1 offers a function to create donation buttons, which internally are posts. The process to create a new button is lacking a CSRF check. An attacker could use this to make an authenticated admin create a new button. Furthermore, one of t...