Buymeacoffee Buy Me A Coffee – Button And Widget Plugin

3 CVEs affecting Buymeacoffee Buy Me A Coffee – Button And Widget Plugin. Latest disclosed: 2023-07-14. Critical: 0, High: 2.

Top CVEs affecting Buymeacoffee Buy Me A Coffee – Button And Widget Plugin
CVESeverityScorePublishedSummary
CVE-2023-2078High7.32023-07-11The "Buy Me a Coffee – Button and Widget Plugin" plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability checks on th…
CVE-2023-2079High7.12023-07-11The "Buy Me a Coffee – Button and Widget Plugin" plugin for WordPress is vulnerable to Cross-Site Request Forgery due to missing nonce validation on the reciev…
CVE-2023-2082Medium6.42023-07-14The "Buy Me a Coffee – Button and Widget Plugin" plugin for WordPress is vulnerable to Cross-Site Scripting in versions up to, and including, 3.6 due to insuff…