Description
WordPress Plugin Charitable-Donation is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently access the user and donation details of previous donations. WordPress Plugin Charitable-Donation version 1.5.13 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.5.14 or latest
References
Related Vulnerabilities
WordPress Plugin WooCommerce Object Injection (2.3.10)
WordPress Plugin JobSearch WP Job Board Cross-Site Scripting (1.5.2)
Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.31)
WordPress Plugin WP-StarsRateBox 'j' Parameter SQL Injection (1.1)
WordPress Plugin Jetpack-WP Security, Backup, Speed, & Growth Cross-Site Scripting (3.4.2)