Skip to content
Features
Pricing
Solutions
Status
API Details
CLI Scanner
Vulnerabilities
Themes
WordPress
Plugins
Stats
Submit Vulnerabilities
Leaderboard
Resources
Blog
Enterprise Features
How to Install WPScan
WPScan Glossary
2024 Website Threat Report
Search
WordPress Plugin Vulnerabilities
Show Previous Letters
0-9
a
b
c
d
e
f
g
h
i
j
k
l
m
n
o
p
q
r
s
t
u
v
w
x
y
z
Show Next Letters
Slug
Published
Title
Slug
give
Published
2022-06-17
Title
GiveWP < 2.21.0 - Donor Information Disclosure
Slug
give
Published
2022-06-20
Title
Give < 2.21.0 - Reflected Cross-Site Scripting
Slug
give
Published
2022-07-11
Title
GiveWP < 2.21.3 - DoS via CSRF
Slug
give
Published
2022-07-11
Title
GiveWP < 2.21.3 - Admin+ Stored Cross-Site Scripting
Slug
give
Published
2022-07-12
Title
GiveWP < 2.21.0 - Manager+ Arbitrary File Creation via Export
Slug
give
Published
2022-07-12
Title
GiveWP < 2.21.0 - Manager+ Arbitrary File Access via Export
Slug
give
Published
2023-01-19
Title
GiveWP < 2.24.0 - Contributor+ Stored XSS
Slug
give
Published
2023-01-19
Title
GiveWP < 2.24.1 - Unauthenticated SQLi
Slug
give
Published
2023-03-10
Title
GiveWP < 2.25.2 - Cross-Site Request Forgery
Slug
give
Published
2023-03-08
Title
GiveWP < 2.25.2 - Admin+ Server-Side Request Forgery
Slug
give
Published
2023-03-10
Title
GiveWP < 2.25.2 - Author+ Stored Cross-Site Scripting
Slug
give
Published
2023-03-10
Title
GiveWP < 2.25.2 - Contributor+ Arbitrary Content Deletion
Slug
give
Published
2023-03-23
Title
GiveWP < 2.25.3 - Cross-Site Request Forgery
Slug
give
Published
2023-03-08
Title
GiveWP < 2.25.2 - Contributor+ Stored XSS
Slug
give
Published
2023-08-31
Title
Give - Donation Plugin < 2.33.1 - Authenticated(Give Manager+) Privilege Escalation
Slug
give
Published
2023-10-31
Title
GiveWP < 2.33.2 - Missing Authorization via handleBeforeGateway
Slug
give
Published
2023-10-31
Title
GiveWP < 2.33.4 - Cross-Site Request Forgery to Stripe Integration Deletion
Slug
give
Published
2023-10-31
Title
GiveWP < 2.33.4 - Cross-Site Request Forgery to plugin deactivation
Slug
give
Published
2023-10-31
Title
GiveWP < 2.33.4 - Cross-Site Request Forgery to plugin installation
Slug
give
Published
2024-01-19
Title
GiveWP < 3.3.0 - Contributor+ Stored XSS
Slug
give
Published
2024-03-19
Title
GiveWP – Donation Plugin and Fundraising Platform < 3.6.0 - Contributor+ Stored XSS
Slug
give
Published
2024-03-15
Title
GiveWP < 3.4.0 - Reflected Cross-Site Scripting
Slug
give
Published
2024-04-12
Title
GiveWP – Donation Plugin and Fundraising Platform < 3.7.0 - Contributor+ Stored Cross-Site Scripting via Shortcode
Slug
give
Published
2024-04-26
Title
GiveWP – Donation Plugin and Fundraising Platform < 3.5.0 - Authenticated (GiveWP Manager+) PHP Object Injection
Slug
give
Published
2024-05-17
Title
GiveWP < 3.11.0 - Contributor+ Stored XSS
Previous
16
17
18
19
20
Next
Subscribe
Subscribed
WPScan
Join 30,880 other subscribers
Sign me up
Already have a WordPress.com account?
Log in now.
WPScan
Subscribe
Subscribed
Sign up
Log in
Report this content
View site in Reader
Manage subscriptions
Collapse this bar
WPScan 