PT-2025-32146 · WordPress · Givewp – Donation Plugin/Fundraising Platform

Kxkv

Publicado

2025-08-06

Atualizado

2025-08-12

CVE-2025-8620

CVSS v3.1

5.3

Média

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions GiveWP – Donation Plugin and Fundraising Platform versions prior to 4.6.1

Description The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is susceptible to information exposure. This allows unauthenticated attackers to extract donor names, emails, and donor IDs.

Recommendations Update GiveWP – Donation Plugin and Fundraising Platform to version 4.6.1 or later.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2025-8620

Produtos afetados

Givewp – Donation Plugin/Fundraising Platform

PT-2025-32146 · WordPress · Givewp – Donation Plugin/Fundraising Platform

CVE-2025-8620

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 12