Buymeacoffee Buy Me A Coffee – Button And Widget Plugin
3 CVEs affecting Buymeacoffee Buy Me A Coffee – Button And Widget Plugin. Latest disclosed: 2023-07-14. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-2078 | High | 7.3 | 2023-07-11 | The "Buy Me a Coffee – Button and Widget Plugin" plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability checks on th… |
CVE-2023-2079 | High | 7.1 | 2023-07-11 | The "Buy Me a Coffee – Button and Widget Plugin" plugin for WordPress is vulnerable to Cross-Site Request Forgery due to missing nonce validation on the reciev… |
CVE-2023-2082 | Medium | 6.4 | 2023-07-14 | The "Buy Me a Coffee – Button and Widget Plugin" plugin for WordPress is vulnerable to Cross-Site Scripting in versions up to, and including, 3.6 due to insuff… |