19 matches found
EUVD-2025-2804
Malicious code in bioql PyPI...
CVE-2025-22525
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bharat Kambariya Donation Block For PayPal donations-block allows Stored XSS.This issue affects Donation Block For PayPal: from n/a through = 2.2.0...
CVE-2023-0535
The Donation Block For PayPal WordPress plugin before 2.1.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting...
CVE-2025-22525
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bharat Kambariya Donation Block For PayPal donations-block allows Stored XSS.This issue affects Donation Block For PayPal: from n/a through = 2.2.0...
CVE-2025-22525
CVE-2025-22525 affects the Donation Block For PayPal WordPress plugin. It is described as an stored XSS vulnerability (Cross-site Scripting) due to improper neutralization of input during web page generation, impacting Donation Block For PayPal versions up to 2.2.0. The connected Red Hat/Wordfenc...
CVE-2025-22525 WordPress Donation Block For PayPal Plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bharatkambariya Donation Block For PayPal allows Stored XSS.This issue affects Donation Block For PayPal: from n/a through 2.2.0...
CVE-2025-22525 WordPress Donation Block For PayPal Plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bharat Kambariya Donation Block For PayPal donations-block allows Stored XSS.This issue affects Donation Block For PayPal: from n/a through = 2.2.0...
WordPress Donation Block For PayPal Plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by zaim Patchstack Alliance in WordPress Plugin Donation Block For PayPal versions = 2.2.0...
WordPress plugin Donation Block For PayPal 跨站脚本漏洞
WordPress and the WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in...
WordPress Donation Block for PayPal plugin <= 2.1.0 - Unauthenticated Stored XSS vulnerability
Unauthenticated Stored XSS vulnerability discovered by Bob Matyas in WordPress Plugin Donation Block For PayPal versions = 2.1.0...
CVE-2024-6021
The Donation Block For PayPal WordPress plugin through 2.1.0 does not sanitise and escape form submissions, leading to a stored cross-site scripting vulnerability...
CVE-2024-6021
The Donation Block For PayPal WordPress plugin through 2.1.0 does not sanitise and escape form submissions, leading to a stored cross-site scripting vulnerability...
CVE-2024-6021
Summary: CVE-2024-6021 affects the WordPress plugin “Donation Block For PayPal” up to version 2.1.0 and is caused by a lack of input sanitization/escaping, leading to a stored cross-site scripting (XSS) vulnerability. Affected software/version: Donation Block For PayPal,
WordPress Donation Block For PayPal Plugin <= 2.1.0 is vulnerable to Cross Site Scripting (XSS)
Software Donation Block For PayPal Type Plugin Vulnerable versions = 2.1.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6021 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 49c1f9f09af2 Credits Bob Matyas...
WordPress plugin Donation Block For PayPal 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...
PT-2024-37324 · WordPress · Donation Block For Paypal
Name of the Vulnerable Software and Affected Versions: The Donation Block For PayPal WordPress plugin versions through 2.1.0 Description: The issue is related to a stored cross-site scripting problem. This occurs because the plugin does not properly sanitise and escape form submissions...
WordPress Donation Block For PayPal Plugin < 2.1.0 is vulnerable to Cross Site Scripting (XSS)
Software Donation Block For PayPal Type Plugin Vulnerable versions 2.1.0 Fixed in 2.1.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0535 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID b8d846d35c7d Credits Lana Codes...
CVE-2023-0535 Donation Block For PayPal < 2.1.0 - Contributor+ Stored XSS
The Donation Block For PayPal WordPress plugin before 2.1.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting...
Donation Block For PayPal < 2.1.0 - Contributor+ Stored XSS
The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC paypaldonationblock size='"...