Harryhe

harryhe

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Gtpayment Donations

gtpayment_donations

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-11607 1Harryhe 1Gtpayment Donations May 14, 2025 Dec 21, 2024 N/A· v4 6.1 MEDIUM· v3 N/A· v2 The GTPayment Donations WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads...Show more The GTPayment Donations WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2024-11607

1Harryhe

1Gtpayment Donations

May 14, 2025

Dec 21, 2024

N/A· v4

6.1 MEDIUM· v3

N/A· v2

The GTPayment Donations WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads...Show more