Description
WordPress Plugin GiveWP-Donation and Fundraising Platform is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin GiveWP-Donation and Fundraising Platform version 2.20.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.21.0 or latest
References
Related Vulnerabilities
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2023-0216)
WordPress Plugin mySTAT 'mystat.php' SQL Injection (2.6)
Grafana Improper Input Validation Vulnerability (CVE-2022-39306)
WordPress Plugin WP TFeed includes Backdoor [Only if downloaded via the vendor website] (1.6.7)
concrete5 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-8082)