Security Vulnerabilities
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 4.6.0. This makes it possible for unauthenticated attackers to extract donor names, emails, and donor id.
CVSS Score
5.3
EPSS Score
0.001
Published
2025-08-06
Information disclosure while processing a packet at EAVB BE side with invalid header length.
CVSS Score
5.5
EPSS Score
0.0
Published
2025-08-06
Transient DOS while creating NDP instance.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-08-06
Memory corruption while processing IOCTL command with larger buffer in Bluetooth Host.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-08-06
Memory corruption while processing simultaneous requests via escape path.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-08-06
Information disclosure while accessing and modifying the PIB file of a remote device via powerline.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-08-06
A race condition vulnerability has been identified in Shopware's voucher system of Shopware v6.6.10.4 that allows attackers to bypass intended voucher restrictions and exceed usage limitations.
CVSS Score
8.1
EPSS Score
0.0
Published
2025-08-06
Memory corruption while processing DDI call with invalid buffer.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-08-06
Memory corruption while processing an IOCTL command with an arbitrary address.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-08-06
Memory corruption while processing DDI command calls.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-08-06