Known Vulnerabilities for products from GiveWP
Listed below are 20 of the newest known vulnerabilities associated with the vendor "GiveWP".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-42642 json | Not Provided | 2026-04-29 | 2026-04-29 | |
| CVE-2026-32425 json | Not Provided | 2026-03-13 | 2026-04-01 | |
| CVE-2025-67467 json | Not Provided | 2025-12-09 | 2026-04-27 | |
| CVE-2025-66533 json | Not Provided | 2025-12-09 | 2026-04-27 | |
| CVE-2025-22777 json | Deserialization of Untrusted Data vulnerability in StellarWP GiveWP give allows Object Injection.This issue affects GiveWP: f... | Not Provided | 2025-01-13 | 2026-04-23 |
| CVE-2025-8620 json | The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Information Exposure in all ver... | Not Provided | 2025-08-06 | 2026-04-08 |
| CVE-2024-47338 json | Not Provided | 2024-10-06 | 2026-04-23 | |
| CVE-2024-47315 json | Cross-Site Request Forgery (CSRF) vulnerability in StellarWP GiveWP give.This issue affects GiveWP: from n/a through <= 3.15.... | Not Provided | 2024-09-25 | 2026-04-23 |
| CVE-2024-35679 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in StellarWP GiveWP give.T... | Not Provided | 2024-06-08 | 2026-04-23 |
| CVE-2024-30229 json | Deserialization of Untrusted Data vulnerability in StellarWP GiveWP give.This issue affects GiveWP: from n/a through <= 3.4.2... | Not Provided | 2024-03-28 | 2026-04-23 |
| CVE-2024-27987 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in StellarWP GiveWP give.T... | Not Provided | 2024-03-15 | 2026-04-23 |
| CVE-2024-8353 json | The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all ver... | Not Provided | 2024-09-28 | 2026-04-08 |
| CVE-2024-3714 json | The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... | Not Provided | 2024-05-18 | 2026-04-08 |
| CVE-2024-1957 json | The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... | Not Provided | 2024-04-13 | 2026-04-08 |
| CVE-2024-1424 json | The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... | Not Provided | 2024-04-09 | 2026-04-08 |
| CVE-2023-51415 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GiveWP GiveWP – Donat... | Not Provided | 2024-02-10 | 2026-04-28 |
| CVE-2023-47183 json | Missing Authorization vulnerability in StellarWP GiveWP give allows Exploiting Incorrectly Configured Access Control Security... | Not Provided | 2025-01-02 | 2026-04-29 |
| CVE-2023-32513 json | Deserialization of Untrusted Data vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform.This issue affe... | Not Provided | 2023-12-28 | 2026-04-28 |
| CVE-2023-25450 json | Cross-Site Request Forgery (CSRF) vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform plugin <= 2.25... | 8.8 - HIGH | 2023-06-15 | 2023-06-22 |
| CVE-2023-23668 json | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in GiveWP plugin <= 2.25.1 versions. | 5.4 - MEDIUM | 2023-05-08 | 2023-05-10 |
Known software with vulnerabilities from GiveWP
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Givewp | Give | 2.0.0 |