Description
WordPress Plugin GiveWP-Donation and Fundraising Platform is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin GiveWP-Donation and Fundraising Platform version 2.20.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.21.0 or latest
References
Related Vulnerabilities
e107 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-6434)
WordPress Plugin EWWW Image Optimizer Cloud Cross-Site Scripting (2.0.1)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2190)
WordPress Plugin Import Social Events Cross-Site Scripting (1.6.6)
Ampache Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-51484)