Description
WordPress Plugin GiveWP-Donation and Fundraising Platform is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently modify plugin settings. WordPress Plugin GiveWP-Donation and Fundraising Platform version 2.5.9 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.5.10 or latest
References
Related Vulnerabilities
phpMyFAQ Improper Privilege Management Vulnerability (CVE-2023-1762)
MySQL CVE-2021-2020 Vulnerability (CVE-2021-2020)
WordPress Plugin SlideDeck 2 Lite Responsive Content Slider Cross-Site Scripting (2.3.18)
WordPress Plugin Feed Them Social-for Twitter feed, Youtube and more PHAR Deserialization (2.9.8.5)
WordPress Plugin KNR Author List Widget 'listItem[]' Parameter SQL Injection (2.0.0)