Give WP < 2.5.10 - Multiple Issues

2019-10-3000:00:00

wpscan.com

0.001 Low

EPSS

Percentile

36.0%

JSON

- Unauthenticated Plugin’s Settings Change. - Authenticated Plugin’s Settings Change. - Improper validation of untrusted data in Headers used to retrieve the user’s IP address.

CPENameOperatorVersion
givelt2.5.10

CPE	Name	Operator	Version
	give	lt	2.5.10

References

blog.nintechnet.com/multiple-vulnerabilities-fixed-in-wordpress-givewp-plugin/

0.001 Low

EPSS

Percentile

36.0%

JSON

Related for WPVDB-ID:17A6E106-66B3-479E-9A98-5D3D6C0D9C1C