Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total2

Critical1

High0

Medium1

Search Severity Year Type Sort Order

Reset

Showing 1-2 of 2 records

Threat Entry Updated 2025-02-25

CVE-2024-13520 - Gift Vouchers Plugin

The Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported) plugin for WordPress is vulnerable to unauthorized modification of data|loss of data due to a missing capability check on the 'update_voucher_price', 'update_voucher_date', 'update_voucher_note' functions in all versions up to, and including, 4.4.6. This makes it possible for unauthenticated attackers to update the value, expiration date, and user note for any gift voucher.

PLUGIN Gift Vouchers

CVE-2024-13520

MEDIUM CVSS 5.3 2025-02-20

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2025-02-25

CVE-2023-28662 - Gift Vouchers Plugin

The Gift Cards (Gift Vouchers and Packages) WordPress Plugin, version

PLUGIN Gift Vouchers

CVE-2023-28662

CRITICAL CVSS 9.8 2023-03-22