Impress - Givewp CVE

Filtered by vendor Impress Subscribe

Filtered by product Givewp

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-20627	1 Impress	1 Givewp	2020-10-26	5.0 MEDIUM	5.3 MEDIUM
The includes/gateways/stripe/includes/admin/admin-actions.php in GiveWP plugin through 2.5.9 for WordPress allows unauthenticated settings change.
CVE-2019-15317	1 Impress	1 Givewp	2019-08-26	3.5 LOW	5.4 MEDIUM
The give plugin before 2.4.7 for WordPress has XSS via a donor name.

Vulnerabilities (CVE)