Donations

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-13001 MEDIUM POC This Month

The donation WordPress plugin through 1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing high privilege users, such as admin to perform SQL injection attacks

SQLi WordPress Donations PHP
NVD WPScan
CVSS 3.1
4.1
EPSS
0.0%
CVE-2025-13001
EPSS 0% CVSS 4.1
MEDIUM POC This Month

The donation WordPress plugin through 1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing high privilege users, such as admin to perform SQL injection attacks

SQLi WordPress Donations +1
NVD WPScan

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy