CVE-2021-24213

CVE-2021-24213: GiveWP < 2.10.0 - Reflected Cross Site Scripting (XSS)

Vendor Givewp
Product GiveWP – Donation Plugin and Fundraising Platform
Weakness CWE-79 · XSS
Published April 12, 2021
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

The GiveWP – Donation Plugin and Fundraising Platform WordPress plugin before 2.10.0 was affected by a reflected Cross-Site Scripting vulnerability inside of the administration panel, via the 's' GET parameter on the Donors page.

Key dates

02Disclosure timeline

April 12, 2021 CVE published
August 3, 2024 Record updated