CVE-2019-9909: XSS
First published: Thu Mar 21 2019(Updated: )
The "Donation Plugin and Fundraising Platform" plugin before 2.3.1 for WordPress has wp-admin/edit.php csv XSS.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Givenu Givenu Give | <2.3.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2019-9909.
What is the title of this vulnerability?
The title of this vulnerability is 'The Donation Plugin and Fundraising Platform plugin before 2.3.1 for WordPress has wp-admin/edit.php csv XSS.'
What is the severity of CVE-2019-9909?
The severity of CVE-2019-9909 is medium.
How does CVE-2019-9909 affect the 'Donation Plugin and Fundraising Platform' plugin for WordPress?
CVE-2019-9909 affects the 'Donation Plugin and Fundraising Platform' plugin for WordPress version up to exclusive 2.3.1.
What is the Common Weakness Enumeration (CWE) ID for this vulnerability?
The Common Weakness Enumeration (CWE) ID for this vulnerability is CWE-79.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/first-publish-date
- agent/description
- agent/author
- agent/last-modified-date
- agent/event
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/givewp
- canonical/givenu givenu give