CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8171 matches found

OSV•added 2025/10/04 3:15 a.m.•3 views

CVE-2025-11228

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the registerAssociateFormsWithCampaign function in all versions up to, and including, 4.10.0. This makes it possible for unauthenticat...

5.3CVSS5.2AI score0.00266EPSS

Exploits0References3

NVD•added 2025/10/04 3:15 a.m.•7 views

CVE-2025-11228

5.3CVSS0.00266EPSS

Exploits0References3

OSV•added 2025/10/04 3:15 a.m.•3 views

CVE-2025-11227

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 4.10.0 via the 'registerGetForm', 'registerGetForms', 'registerGetCampaign' and 'registerGetCampaigns' functions due to a missing capability check...

6.5CVSS5.4AI score

Exploits0References6

NVD•added 2025/10/04 3:15 a.m.•7 views

CVE-2025-11227

6.5CVSS0.00254EPSS

Exploits0References6

CVE•added 2025/10/04 2:24 a.m.•15 views

CVE-2025-11228

The CVE-2025-11228 issue affects GiveWP – Donation Plugin and Fundraising Platform for WordPress (versions

5.3CVSS4.9AI score0.00266EPSS

Exploits0References3Affected Software1

Cvelist•added 2025/10/04 2:24 a.m.•7 views

CVE-2025-11228 GiveWP – Donation Plugin and Fundraising Platform <= 4.10.0 - Missing Authorization to Unauthenticated Forms-Campaign Association

5.3CVSS0.00266EPSS

Exploits0References3

CVE•added 2025/10/04 2:24 a.m.•18 views

CVE-2025-11227

CVE-2025-11227 concerns the GiveWP – Donation Plugin and Fundraising Platform for WordPress. Wordfence and related feeds document a vulnerability in all versions up to 4.10.0 where missing capability checks in REST endpoints (registerGetForm, registerGetForms, registerGetCampaign, registerGetCamp...

6.5CVSS5.1AI score0.00254EPSS

Exploits0References6Affected Software1

Cvelist•added 2025/10/04 2:24 a.m.•7 views

CVE-2025-11227 GiveWP – Donation Plugin and Fundraising Platform <= 4.10.0 - Missing Authorization to Unauthenticated Forms and Campaigns Disclosure

6.5CVSS0.00254EPSS

Exploits0References6

Vulnrichment•added 2025/10/04 2:24 a.m.•3 views

CVE-2025-11227 GiveWP – Donation Plugin and Fundraising Platform <= 4.10.0 - Missing Authorization to Unauthenticated Forms and Campaigns Disclosure

6.5CVSS5.1AI score0.00254EPSS

Exploits0References6

Positive Technologies•added 2025/10/04 12:0 a.m.•5 views

PT-2025-40615

Name of the Vulnerable Software and Affected Versions GiveWP – Donation Plugin and Fundraising Platform versions prior to 4.10.1 Description The GiveWP – Donation Plugin and Fundraising Platform for WordPress is subject to Information Exposure due to a missing capability check in the...

6.5CVSS6.3AI score0.00254EPSS

Exploits0References10

Positive Technologies•added 2025/10/04 12:0 a.m.•3 views

PT-2025-40616

Name of the Vulnerable Software and Affected Versions GiveWP – Donation Plugin and Fundraising Platform versions prior to 4.10.1 Description The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress has a flaw that allows unauthorized modification of data. A missing capability...

5.3CVSS6.5AI score0.00266EPSS

Exploits0References7

CNNVD•added 2025/10/04 12:0 a.m.•4 views

WordPress plugin GiveWP 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

5.3CVSS6.6AI score0.00266EPSS

Exploits0References3