Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-29433: Donations

Authenticated (contributor or higher role) Cross-Site Scripting (XSS) vulnerability in Donations plugin <= 1.8 on WordPress.

CVE
#xss#vulnerability#wordpress#auth
  • Details
  • Reviews
  • Support
  • Development

This plugin has been closed as of February 28, 2022 and is not available for download. Reason: Security Issue.

There is no way to edit the ‘insert custom value’ in the form page. it gets confusing for site visitor as an ‘insert amount’ would be certainly clearer. All in all, a very good plugin

Failed FAQ, no any reply to the question u asked

Hello this is great. LARGE DAMAGE: PAYMENT “STRIPE” NOT CONSIDERED. ONLY PAYPAL

Read all 8 reviews

“Donations” is open source software. The following people have contributed to this plugin.

Contributors

  • nicdark

Related news

CVE-2022-29433: Donations

Authenticated (contributor or higher role) Cross-Site Scripting (XSS) vulnerability in Donations plugin <= 1.8 on WordPress.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907