cleantalk
Vulnerabilities and Security Researches

Whydonate – FREE Donate button – Crowdfunding – Fundraising, CVE-2023-29238

CVE, Research URL

CVE-2023-29238

Home page URL

Security reports for Whydonate – FREE Donate button – Crowdfunding – Fundraising

Application

Whydonate – FREE Donate button – Crowdfunding – Fundraising

Published on
Nov 13, 2023
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Whydonate Whydonate – FREE Donate button – Crowdfunding – Fundraising plugin <= 3.12.15 versions.
Affected versions
max 3.12.16.
Status
vulnerable
Previous vulnerability researches
Whydonate &#8211; FREE Donate button &#8211; Crowdfunding &#8211; Fundraising (CVE-2025-49899) , Nov 11, 2025
Whydonate &#8211; FREE Donate button &#8211; Crowdfunding &#8211; Fundraising (CVE-2025-10186) , Nov 11, 2025
Whydonate &#8211; FREE Donate button &#8211; Crowdfunding &#8211; Fundraising (CVE-2023-29238) , Jun 07, 2024
New vulnerability
Majestic Support &#8211; Help Desk &amp; Support Plugin (CVE-2025-64284) , Nov 11, 2025
Pets (CVE-2025-52742) , Nov 11, 2025
WordPress Live Webcam Widget &amp; Shortcode (CVE-2025-10129) , Nov 11, 2025
Free Follow-Up Emails &amp; Marketing Automation for WooCommerce &#8211; ShopMagic (CVE-2025-59578) , Nov 11, 2025
Find And Replace content for WordPress (CVE-2025-10313) , Nov 11, 2025