8 matches found
EUVD-2018-13535
Malware in sbrugna...
CVE-2018-21011
The charitable plugin before 1.5.14 for WordPress has unauthorized access to user and donation details...
WordPress charitable plugin information disclosure vulnerability
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. charitable is used in one of the online donation platform to build plug-ins. An information disclosure vulnerability exists in the...
CVE-2018-21011
The charitable plugin before 1.5.14 for WordPress has unauthorized access to user and donation details...
Design/Logic Flaw
The charitable plugin before 1.5.14 for WordPress has unauthorized access to user and donation details...
CVE-2018-21011
The charitable plugin before 1.5.14 for WordPress has unauthorized access to user and donation details...
CVE-2018-21011
CVE-2018-21011 affects the WordPress Charitable plugin prior to version 1.5.14, allowing unauthorized access to user and donation details. The issue stems from a vulnerability in the Charitable plugin that leads to information disclosure; CVSS metrics indicate a network-accessible flaw with mediu...
Charitable <= 1.5.13 - Unauthorised Access
From the vendor blog pos details: Fix a bug that can in certain scenarios allow unauthorized users to access the user and donation details of previous donations. Payment details such as credit card details were not exposed...