Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 61 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-32425 WordPress Payment Gateway Pix For GiveWP plugin <= 2.2.3 - Broken Access Control vulnerability linknacionalPayment Gateway Pix For GiveWP 中危 -2026-03-13 11:42:17 Deep Dive
CVE-2025-67467 WordPress GiveWP plugin <= 4.13.1 - Cross Site Request Forgery (CSRF) vulnerability StellarWPGiveWP Medium 5.4 2025-12-09 15:03:54 Deep Dive
CVE-2025-66533 WordPress GiveWP plugin <= 4.13.1 - Arbitrary Shortocde Execution vulnerability StellarWPGiveWP Medium 5.3 2025-12-09 15:03:54 Deep Dive
CVE-2025-13206 GiveWP - Donation Plugin and Fundraising Platform <= 4.13.0 - Unauthenticated Stored Cross-Site Scripting via 'name' stellarwpGiveWP – Donation Plugin and Fundraising Platform High 7.2 2025-11-19 07:46:08 Deep Dive
CVE-2025-11228 GiveWP – Donation Plugin and Fundraising Platform <= 4.10.0 - Missing Authorization to Unauthenticated Forms-Campaign Association stellarwpGiveWP – Donation Plugin and Fundraising Platform Medium 5.3 2025-10-04 02:24:38 Deep Dive
CVE-2025-11227 GiveWP – Donation Plugin and Fundraising Platform <= 4.10.0 - Missing Authorization to Unauthenticated Forms and Campaigns Disclosure stellarwpGiveWP – Donation Plugin and Fundraising Platform Medium 6.5 2025-10-04 02:24:35 Deep Dive
CVE-2025-7221 GiveWP – Donation Plugin and Fundraising Platform <= 4.5.0 - Missing Authorization to Donation Update stellarwpGiveWP – Donation Plugin and Fundraising Platform Medium 4.3 2025-08-21 05:28:14 Deep Dive
CVE-2025-8620 GiveWP – Donation Plugin and Fundraising Platform <= 4.6.0 - Unauthenticated Donor Data Exposure stellarwpGiveWP – Donation Plugin and Fundraising Platform Medium 5.3 2025-08-06 09:22:33 Deep Dive
CVE-2025-7205 GiveWP – Donation Plugin and Fundraising Platform <= 4.5.0 - Authenticated (GiveWP worker+) Stored Cross-Site Scripting stellarwpGiveWP – Donation Plugin and Fundraising Platform Medium 5.4 2025-07-31 07:25:01 Deep Dive
CVE-2025-4571 GiveWP – Donation Plugin and Fundraising Platform <= 4.3.0 - Missing Authorization To Authenticated (Contributor+) Campaign Data View And Modification stellarwpGiveWP – Donation Plugin and Fundraising Platform Medium 5.4 2025-06-19 06:44:49 Deep Dive
CVE-2025-2331 GiveWP – Donation Plugin and Fundraising Platform <= 3.22.1 - Authenticated (Subscriber+) Sensitive Information Exposure stellarwpGiveWP – Donation Plugin and Fundraising Platform Medium 5.3 2025-03-22 11:18:42 Deep Dive
CVE-2025-2025 Give <= 3.22.0 - Missing Authorization to Unauthenticated Arbitrary Earning Reports Disclosure via give_reports_earnings Function stellarwpGiveWP – Donation Plugin and Fundraising Platform Medium 6.5 2025-03-15 11:13:28 Deep Dive
CVE-2025-0912 GiveWP – Donation Plugin and Fundraising Platform <= 3.19.4 - Unauthenticated PHP Object Injection stellarwpGiveWP – Donation Plugin and Fundraising Platform Critical 9.8 2025-03-04 03:37:59 Deep Dive
CVE-2024-13713 WPExperts Square For GiveWP <= 1.3.1 - Authenticated (Subscriber+) SQL Injection saadiqbalWPExperts Square For GiveWP Medium 6.5 2025-02-21 11:09:34 Deep Dive
CVE-2025-22777 WordPress GiveWP Plugin <= 3.19.3 - PHP Object Injection vulnerability StellarWPGiveWP Critical 9.8 2025-01-13 13:10:52 Deep Dive
CVE-2024-12877 GiveWP – Donation Plugin and Fundraising Platform <= 3.19.2 - Unauthenticated PHP Object Injection stellarwpGiveWP – Donation Plugin and Fundraising Platform Critical 9.8 2025-01-11 07:21:54 Deep Dive
CVE-2023-23672 WordPress GiveWP plugin <= 2.25.1 - Arbitrary Content Deletion vulnerability Liquid Web / StellarWPGiveWP Medium 5.4 2025-01-02 15:06:38 Deep Dive
CVE-2023-47183 WordPress GiveWP plugin <= 2.33.1 - Broken Access Control vulnerability StellarWPGiveWP 中危 -2025-01-02 12:00:30 Deep Dive
CVE-2024-11921 Give < 3.19.0 - Reflected XSS UnknownGiveWP 中危 -2024-12-27 06:00:16 Deep Dive
CVE-2024-9634 GiveWP – Donation Plugin and Fundraising Platform <= 3.16.3 - Unauthenticated PHP Object Injection to Remote Code Execution stellarwpGiveWP – Donation Plugin and Fundraising Platform Critical 9.8 2024-10-16 02:05:09 Deep Dive