2 matches found
CVE-2026-4650
The FundPress WordPress Donation Plugin (
EUVD-2026-26755
The FundPress – WordPress Donation Plugin for WordPress is vulnerable to authorization bypass in versions up to and including 2.0.8. This is due to missing authorization and nonce verification in the donateactionstatus AJAX handler, which is registered to be accessible to unauthenticated users vi...