8 matches found
EUVD-2024-34284
Malicious code in bioql PyPI...
CVE-2024-50459
Missing Authorization vulnerability in Hossni Mubarak AidWP wp-stripe-donation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AidWP: from n/a through = 3.2.3...
CVE-2024-11879
Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-53752. Reason: This candidate is a reservation duplicate of CVE-2024-53752. Notes: All CVE users should reference CVE-2024-53752 instead of this candidate. All references and descriptions in this candidate have been...
PT-2024-17315 · WordPress · Stripe Donation Plugin
Name of the Vulnerable Software and Affected Versions: Stripe Donation plugin for WordPress versions 1.2.5 and earlier Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'stripe donation' shortcode due to insufficient input sanitization and output escaping on...
WordPress Stripe Donation plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Stripe Donation versions = 1.2.5...
CVE-2024-50459 WordPress AidWP plugin <= 3.2.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in Hossni Mubarak AidWP wp-stripe-donation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AidWP: from n/a through = 3.2.3...
CVE-2024-50459 WordPress AidWP plugin <= 3.2.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in Hossni Mubarak AidWP wp-stripe-donation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AidWP: from n/a through = 3.2.3...
PT-2024-34234 · WordPress · Wordpress Stripe Donation/Payment Plugin
Name of the Vulnerable Software and Affected Versions: WordPress Stripe Donation and Payment Plugin versions 3.2.3 and earlier Description: The issue is related to missing authorization in the HM Plugin WordPress Stripe Donation and Payment Plugin, allowing exploitation due to incorrectly...