What the vulnerability does
01Description
Missing Authorization vulnerability in jjlemstra Whydonate wp-whydonate allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Whydonate: from n/a through <= 4.0.15.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
What the vulnerability does
Missing Authorization vulnerability in jjlemstra Whydonate wp-whydonate allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Whydonate: from n/a through <= 4.0.15.
Explanation of Vulnerability in Simple Terms
Whydonate versions 4.0.15 and earlier lack proper authorization checks, allowing unauthenticated attackers to trigger a denial-of-service condition. The vulnerability requires no user interaction and can be exploited remotely over the network. Site availability may be disrupted if the affected component is actively used.
What an attacker can do
Make the site unavailable or unresponsive by sending specially crafted requests.
Potential impact on your site
Your site may become slow or unavailable if an attacker exploits this flaw.
Conditions required to exploit
Network access to the site; no authentication or user interaction required.
Key dates
External resources
Related vulnerabilities