Lucene search
+L

193 matches found

Nuclei
Nuclei
added yesterday16 views

PHPJabbers Fundraising Script v1.0 - Cross-Site Scripting

PHPJabbers Fundraising Script v1.0 is vulnerable to Cross Site Scripting XSS via the "action" parameter of index.php. id: CVE-2023-40751 info: name: PHPJabbers Fundraising Script v1.0 - Cross-Site Scripting author: ritikchaddha severity: medium description: | PHPJabbers Fundraising Script v1.0 is...

6.1CVSS6.4AI score0.01044EPSS
Exploits0References2
Nuclei
Nuclei
added yesterday77 views

WordPress WP Fundraising Donation and Crowdfunding Platform <1.5.0 - SQL Injection

WordPress WP Fundraising Donation and Crowdfunding Platform plugin before 1.5.0 contains an unauthenticated SQL injection vulnerability. It does not sanitize and escape a parameter before using it in a SQL statement via a REST route. An attacker can possibly obtain sensitive information, modify...

9.8CVSS7.1AI score0.07879EPSS
Exploits2References5
Nuclei
Nuclei
added 2 days ago154 views

GiveWP - PHP Object Injection

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.14.1 via deserialization of untrusted input from the 'givetitle' parameter. id: CVE-2024-5932 info: name: GiveWP - PHP Object Injection author:...

10CVSS7.1AI score0.74283EPSS
Exploits11References7
NVD
NVD
added 4 days ago3 views

CVE-2026-57406

Missing Authorization vulnerability in Roxnor FundEngine wp-fundraising-donation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FundEngine: from n/a through = 1.7.6...

6.5CVSS0.00242EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/07/06 2:23 p.m.5 views

WordPress Better Payment – Instant Payments, Donations, Fundraising with Subscriptions & More plugin <= 2.2.0 - Other Vulnerability Type vulnerability

Other Vulnerability Type vulnerability discovered by dodoh4t in WordPress Plugin Better Payment – Instant Payments, Donations, Fundraising with Subscriptions & More versions = 2.2.0...

6.5CVSS5.9AI score0.00255EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 10:45 a.m.10 views

CVE-2022-0788

The WP Fundraising Donation and Crowdfunding Platform WordPress plugin before 1.5.0 does not sanitise and escape a parameter before using it in a SQL statement via one of it's REST route, leading to an SQL injection exploitable by unauthenticated users...

9.8CVSS7.6AI score0.07879EPSS
Exploits2References1
CNNVD
CNNVD
added 2025/11/19 12:0 a.m.5 views

WordPress plugin GiveWP – Donation Plugin and Fundraising Platform 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scriptin...

7.2CVSS5.9AI score0.00222EPSS
Exploits0References5
Patchstack
Patchstack
added 2025/11/18 11:53 p.m.8 views

WordPress GiveWP - Donation plugin and Fundraising Platform plugin <= 4.13.0 - Unauthenticated Stored Cross-Site Scripting via 'name' vulnerability

WordPress GiveWP - Donation plugin and Fundraising Platform plugin = 4.13.0 - Unauthenticated Stored Cross-Site Scripting via 'name' vulnerability discovered by shark3y in WordPress Plugin GiveWP versions = 4.13.0...

7.2CVSS5.8AI score0.00222EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-14988

Malware in sbrugna...

9.8CVSS9.5AI score0.01096EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-14987

Malware in sbrugna...

6.1CVSS6.3AI score0.00716EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-14990

Malware in sbrugna...

9.8CVSS9.5AI score0.01096EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-14989

Malware in sbrugna...

6.1CVSS6.3AI score0.00641EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/10/04 2:24 a.m.4 views

CVE-2025-11228 GiveWP – Donation Plugin and Fundraising Platform <= 4.10.0 - Missing Authorization to Unauthenticated Forms-Campaign Association

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the registerAssociateFormsWithCampaign function in all versions up to, and including, 4.10.0. This makes it possible for unauthenticat...

5.3CVSS4.9AI score0.00272EPSS
Exploits0References3
CVE
CVE
added 2025/10/04 2:24 a.m.23 views

CVE-2025-11227

CVE-2025-11227 concerns the GiveWP – Donation Plugin and Fundraising Platform for WordPress. Wordfence and related feeds document a vulnerability in all versions up to 4.10.0 where missing capability checks in REST endpoints (registerGetForm, registerGetForms, registerGetCampaign, registerGetCamp...

6.5CVSS5.1AI score0.00259EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-35028

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00401EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-36717

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00371EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-29405

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00264EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-45315

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00746EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-43607

Malicious code in bioql PyPI...

6.5CVSS7.2AI score0.00432EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-13856

Malicious code in bioql PyPI...

4.3CVSS6.2AI score0.0014EPSS
Exploits0References1
Rows per page
Query Builder