Vulnerabilidades em GiveWP

12 resultados

CVE-2022-28700CRITICALWordPress GiveWP plugin <= 2.20.2 - Authenticated Arbitrary File Creation via Export function vulnerabilityEPSS 1.4%CVE-2021-24213—GiveWP < 2.10.0 - Reflected Cross Site Scripting (XSS)EPSS 1.4%CVE-2022-31475MEDIUMWordPress GiveWP plugin <= 2.20.2 - Authenticated Arbitrary File Read via Export function vulnerabilityEPSS 0.7%CVE-2021-24315—Give WP < 2.10.4 - Authenticated Stored Cross-Site Scripting (XSS)EPSS 0.7%CVE-2023-22719MEDIUMWordPress GiveWP Plugin <= 2.25.1 is vulnerable to CSV InjectionEPSS 0.6%CVE-2023-41665HIGHWordPress GiveWP plugin <= 2.33.0 - GiveWP Manager+ Privilege Escalation vulnerabilityEPSS 0.6%CVE-2023-32513HIGHWordPress GiveWP Plugin <= 2.25.3 is vulnerable to PHP Object InjectionEPSS 0.6%CVE-2022-40312MEDIUMWordPress GiveWP Plugin <= 2.25.1 is vulnerable to Server Side Request Forgery (SSRF)EPSS 0.4%CVE-2022-40211MEDIUMWordPress GiveWP plugin <= 2.25.1 - Cross Site Scripting (XSS) via render_dropdown vulnerabilityEPSS 0.4%CVE-2023-23668MEDIUMWordPress GiveWP Plugin <= 2.25.1 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2023-51415MEDIUMWordPress GiveWP Plugin <= 3.2.2 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2023-25450MEDIUMWordPress GiveWP Plugin <= 2.25.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%