Lucene search
K

22 matches found

Patchstack
Patchstack
added 2025/12/31 12:0 a.m.8 views

WordPress Double the Donation plugin <= 3.0.0 - Authenticated (Admin+) Stored Cross-Site Scripting vulnerability

Authenticated Admin+ Stored Cross-Site Scripting vulnerability discovered by WordFence in WordPress Plugin Double the Donation versions = 3.0.0...

4.9CVSS5.9AI score0.00207EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/11/12 3:46 a.m.13 views

CVE-2025-12020

The Double the Donation – A workplace giving tool to help your fundraising efforts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.0.0 due to insufficient input sanitization and output escaping. This makes it possible fo...

4.9CVSS6AI score0.00207EPSS
Exploits0References1
NVD
NVD
added 2025/11/11 4:15 a.m.5 views

CVE-2025-12020

The Double the Donation – A workplace giving tool to help your fundraising efforts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.0.0 due to insufficient input sanitization and output escaping. This makes it possible fo...

4.9CVSS0.00207EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/11/11 3:30 a.m.9 views

CVE-2025-12020 Double the Donation <= 3.0.0 - Authenticated (Admin+) Stored Cross-Site Scripting

The Double the Donation – A workplace giving tool to help your fundraising efforts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.0.0 due to insufficient input sanitization and output escaping. This makes it possible fo...

4.9CVSS0.00207EPSS
Exploits0References4
CVE
CVE
added 2025/11/11 3:30 a.m.19 views

CVE-2025-12020

The CVE-2025-12020 entry concerns the WordPress plugin Double the Donation. The connected documents provide concrete details: the plugin versions up to and including 2.0.0 are vulnerable to Stored Cross-Site Scripting via admin settings, caused by insufficient input sanitization and output escapi...

4.9CVSS6AI score0.00207EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/11/11 12:0 a.m.6 views

WordPress plugin Double the Donation 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-site...

4.9CVSS5.7AI score0.00207EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/11/10 12:0 a.m.5 views

PT-2025-46241

Name of the Vulnerable Software and Affected Versions Double the Donation – A workplace giving tool to help your fundraising efforts plugin for WordPress versions prior to 2.0.1 Description The Double the Donation plugin for WordPress is susceptible to Stored Cross-Site Scripting through admin...

4.9CVSS5.2AI score0.00207EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-30693

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00149EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/24 6:30 p.m.4 views

CVE-2025-57930

Cross-Site Request Forgery CSRF vulnerability in kanweidoublethedonation Double the Donation double-the-donation allows Cross Site Request Forgery.This issue affects Double the Donation: from n/a through = 2.0.0...

4.3CVSS5.9AI score0.00149EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/24 6:30 p.m.2 views

CVE-2025-57929

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kanweidoublethedonation Double the Donation double-the-donation allows Stored XSS.This issue affects Double the Donation: from n/a through = 2.0.0...

5.9CVSS5.9AI score0.00224EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/22 7:32 p.m.4 views

WordPress Double the Donation Plugin <= 2.0.0 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Double the Donation versions = 2.0.0...

5.9CVSS6AI score0.00224EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/09/22 7:15 p.m.3 views

CVE-2025-57930

Cross-Site Request Forgery CSRF vulnerability in kanweidoublethedonation Double the Donation double-the-donation allows Cross Site Request Forgery.This issue affects Double the Donation: from n/a through = 2.0.0...

4.3CVSS0.00149EPSS
Exploits0References1
CVE
CVE
added 2025/09/22 6:25 p.m.10 views

CVE-2025-57929

CVE-2025-57929 is a Stored XSS in the WordPress plugin Double the Donation (vulnerable up to 2.0.0). Root cause: improper neutralization of input during web page generation. Impact (per sources): requires authentication; could inject scripts via input handled by the plugin. Remediation: update to...

5.9CVSS5.9AI score0.00224EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/22 6:25 p.m.1 views

CVE-2025-57929 WordPress Double the Donation Plugin <= 2.0.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kanweidoublethedonation Double the Donation double-the-donation allows Stored XSS.This issue affects Double the Donation: from n/a through = 2.0.0...

5.9CVSS5.9AI score0.00224EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/22 6:25 p.m.12 views

CVE-2025-57929 WordPress Double the Donation Plugin <= 2.0.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kanweidoublethedonation Double the Donation double-the-donation allows Stored XSS.This issue affects Double the Donation: from n/a through = 2.0.0...

5.9CVSS0.00224EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/22 6:25 p.m.1 views

CVE-2025-57930 WordPress Double the Donation Plugin <= 2.0.0 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in kanweidoublethedonation Double the Donation allows Cross Site Request Forgery. This issue affects Double the Donation: from n/a through 2.0.0...

4.3CVSS6.5AI score0.00149EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/22 6:25 p.m.12 views

CVE-2025-57930 WordPress Double the Donation Plugin <= 2.0.0 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in kanweidoublethedonation Double the Donation double-the-donation allows Cross Site Request Forgery.This issue affects Double the Donation: from n/a through = 2.0.0...

4.3CVSS0.00149EPSS
Exploits0References1
CVE
CVE
added 2025/09/22 6:25 p.m.8 views

CVE-2025-57930

CVE-2025-57930 describes a Cross-Site Request Forgery in the WordPress plugin Double the Donation (affected: 0 through 2.0.0) that requires user interaction to trigger. Impact is limited to CSRF-propagated actions authenticated as a user; CVSS 3.1 base score 4.3 (Medium). Remediation: upgrade to ...

4.3CVSS5.9AI score0.00149EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.3 views

WordPress plugin Double the Donation 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site request...

4.3CVSS6.5AI score0.00149EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.4 views

PT-2025-38781

Name of the Vulnerable Software and Affected Versions Double the Donation versions through 2.0.0 Description A Cross-Site Request Forgery CSRF issue exists in Double the Donation. This allows attackers to potentially perform actions on behalf of an authenticated user without their knowledge...

4.3CVSS6.5AI score0.00149EPSS
Exploits0References3
Rows per page
Query Builder