Charitable
Syed Balkhi
Developer
1.8.11.2
Latest version
10,000
Installations
No date
Last updated
Vulnerability history
0 present
16 patched
8 Mitigation rules
- Authenticated (Custom+) SQL Injection vulnerability<= 1.8.10.412/05/2026
- Insufficient Verification of Data Authenticity to Unauthenticated Donation Status Forgery via Stripe Webhook vulnerability<= 1.8.9.707/04/2026
- Authenticated (Subscriber+) SQL Injection vulnerability<= 1.8.8.425/10/2025
- Authenticated (Administrator+) Stored Cross-Site Scripting via Plugin's Privacy Settings vulnerability<= 1.8.6.126/06/2025
- Cross Site Scripting (XSS) Vulnerability<= 1.8.5.107/05/2025
- Cross Site Scripting (XSS) Vulnerability<= 1.8.4.726/03/2025
- Reflected Cross-Site Scripting vulnerability<= 1.8.309/11/2024
- Insecure Direct Object Reference to Account Takeover and Privilege Escalation vulnerability<= 1.8.1.1424/09/2024
- Broken Access Control vulnerability<= 1.8.1.704/07/2024
- Broken Access Control vulnerability<= 1.8.1.704/07/2024
- Cross Site Scripting (XSS) vulnerability<= 1.7.0.1315/11/2023
- Unauthenticated Privilege Escalation Vulnerability<= 1.7.0.1222/08/2023
- Cross Site Scripting (XSS)<= 1.7.0.1019/04/2023
- Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability<= 1.6.5021/07/2021
- Authenticated Stored Cross-Site Scripting (XSS) vulnerability<= 1.6.5021/07/2021
- Unauthorized Access vulnerability leading to Sensitive Information Disclosure<= 1.5.1316/05/2018