Description
WordPress Plugin Donation Forms by Charitable-Donations & Fundraising Platform for WordPress is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently access the user and donation details of previous donations. WordPress Plugin Donation Forms by Charitable-Donations & Fundraising Platform for WordPress version 1.5.13 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.5.14 or latest
References
Related Vulnerabilities
Envoy Proxy Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-27492)
WordPress Plugin WC Duplicate Order Security Bypass (1.5)
WordPress Plugin SMS Alert Order Notifications-WooCommerce Cross-Site Scripting (3.4.6)
WordPress Plugin Good LMS-Learning Management System SQL Injection (2.1.4)
Jenkins Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2024-47803)