CVE-2022-2117
The CVE-2022-2117 entry concerns the WordPress plugin GiveWP . Affected versions are up to and including 2.20.2 , where the vulnerable /donor-wall REST-API endpoint exposed donor information to unauthenticated users even when the donor wall was disabled. The issue is resolved in version 2.20.2 (a...