[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fK2r-_hXQsWFxKUt9RoXiduefy-B2h6Btxm95GeCOlBk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":138,"crawl_stats":38,"alternatives":146,"analysis":245,"fingerprints":1062},"idonate","IDonate – Blood Donation, Request And Donor Management System","2.1.18","Foysal Imran","https:\u002F\u002Fprofiles.wordpress.org\u002Ffaysal61\u002F","\u003Cp>iDonate is a lightweight, powerful WordPress plugin designed to streamline the process of managing blood donations and requests. Whether you’re setting up a blood donation platform or looking to manage blood requests, iDonate connects \u003Cstrong>blood donors\u003C\u002Fstrong> and \u003Cstrong>recipients\u003C\u002Fstrong> efficiently, making life-saving blood donations easier to facilitate.\u003C\u002Fp>\n\u003Cp>This full-featured Blood Donation management system offers everything needed to run a comprehensive blood donation website. Visitors can submit blood requests through a \u003Cstrong>dedicated blood request form\u003C\u002Fstrong>, and all submissions are displayed in a public listing. The listing includes an \u003Cstrong>advanced search form\u003C\u002Fstrong>, allowing potential donors to filter and find blood requests based on location, blood type, urgency, and more.\u003C\u002Fp>\n\u003Cp>Blood donors have access to a \u003Cstrong>dedicated dashboard\u003C\u002Fstrong>, where they can manage their profiles and donation information. Donors can \u003Cstrong>register, log in\u003C\u002Fstrong>, and \u003Cstrong>update their details\u003C\u002Fstrong> such as contact information, blood type, availability, and location at any time. This ensures that their information is always current and readily available to those searching for donors.\u003C\u002Fp>\n\u003Cp>In addition to its robust functionality, iDonate Blood Donation plugin offers a clean, intuitive \u003Cstrong>UI\u003C\u002Fstrong> and an \u003Cstrong>easy-to-use admin panel\u003C\u002Fstrong>, making it ideal for blood banks, hospitals, and organizations looking to create an efficient blood donation system on their WordPress site.\u003C\u002Fp>\n\u003Cp>iDonate is fully responsive and optimized for speed, ensuring seamless performance on any device while delivering an enhanced user experience for both donors and recipients.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>👁️\u003Ca href=\"https:\u002F\u002Fbloodwp.com\u002F\" rel=\"nofollow ugc\">Plugin Demo\u003C\u002Fa> | 🚀\u003Ca href=\"https:\u002F\u002F1.envato.market\u002Fidonate\" rel=\"nofollow ugc\">Pro Version\u003C\u002Fa> | 📖\u003Ca href=\"https:\u002F\u002Fdocs.themeatelier.net\u002Fdocs\u002Fidonate-pro\u002Foverview\u002F\" rel=\"nofollow ugc\">Docs\u003C\u002Fa> | 👩🏼‍💻\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fidonate\u002F\" rel=\"ugc\">Support\u003C\u002Fa> | 🌟\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fidonate\u002Freviews\u002F#new-post\" rel=\"ugc\">Rate this plugin\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Video demo\u003C\u002Fh3>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FS7s7MBen6-E?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>IDonate 2.0.0\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>IDonate 2.0.0\u003C\u002Fstrong> has been completely rebuilt, offering numerous improvements and exciting new features.\u003C\u002Fp>\n\u003Ch4>You’ll be able to enable:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Blood Request System\u003C\u002Fstrong> – IDonate includes a powerful Blood Request Form designed for those in need of blood. Site visitors can easily request blood by filling out the form, which includes essential fields such as the patient’s name, blood group, location, address, and more. Requests can be posted directly or set to require admin approval. In the latter case, the request will be reviewed and approved by an admin before being published on the website. The Blood Request System encompasses the Blood Request Form, request postings, and approval functionalities.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Donor Registration System\u003C\u002Fstrong> – We know many people around you are eager to donate blood to those in need. That’s why IDonate includes a robust Blood Donor Management System. It features a Blood Donor Registration Form, allowing anyone to become a blood donor by filling out the form. The donor lists are displayed on the Donor page and the donor table page, complete with all their information. Both pages have an advanced search option to help you easily find specific donors easily.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Listen to What People Have to Say:\u003C\u002Fh3>\n\u003Cp>🙆 “Excellent plugin with nice features. Customer support is really wonderful with speedy response. I look forward to see more updates & improvements in features list. Thanks ThemeAtelier for a best plugin.” – myrajput\u003C\u002Fp>\n\u003Cp>🙆 “Very nice & clean code as well, i can select just one reason, or i would select many design, code quality, flexibility, customizability and great customer support! Good luck!” – CoderCafeThemes\u003C\u002Fp>\n\u003Cp>🙆 “I’m using this plugin in my blood donation website and add new feature.If any user need blood they can post request for blood in my site.” – Rahi Saiful\u003C\u002Fp>\n\u003Cp>🙆 “A great purpose on this item, very deserved five stars.” – webdesigntrade\u003C\u002Fp>\n\u003Ch3>🌟 Top Features\u003C\u002Fh3>\n\u003Ch3>Key Features of iDonate Blood Donation:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Advanced Frontend Donor Registration Form\u003C\u002Fstrong>: Allow users to easily register as blood donors via a fully customizable form.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Backend Donor Management\u003C\u002Fstrong>: Admins can add donors through a dedicated backend form.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Complete Donor Management\u003C\u002Fstrong>: View, edit, and delete donor profiles from the backend with ease.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Donor Review & Approval\u003C\u002Fstrong>: Site admins can review and approve donor registrations before they are listed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Donor Listing with Advanced Search\u003C\u002Fstrong>: Easily search for donors based on criteria like blood type, location, and availability.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Donor Dashboard\u003C\u002Fstrong>: Each donor gets a personal dashboard to manage their profile and update details.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Donor Statistics Page\u003C\u002Fstrong>: Donors can view their personal statistics within the dashboard.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Individual Donor Profile Pages\u003C\u002Fstrong>: Each donor has a dedicated page displaying their information and availability.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Advanced Blood Request Submission Form\u003C\u002Fstrong>: Visitors can submit blood requests through a user-friendly frontend form.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Blood Request Management\u003C\u002Fstrong>: Easily manage and create new blood requests from the admin panel using custom post types.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Request Review & Approval\u003C\u002Fstrong>: Admins can review, approve, and display blood requests.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Blood Request Listings with Advanced Search\u003C\u002Fstrong>: Public blood request listings come with an advanced search feature for quick access to relevant requests.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Individual Blood Request Pages\u003C\u002Fstrong>: Each blood request gets a dedicated single page with detailed information.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto-Delete Expired Requests\u003C\u002Fstrong>: Automatically delete blood requests based on expiration settings: never delete, delete on the blood-needed date, or delete 1 week after the need date.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Essential Shortcodes\u003C\u002Fstrong>: Includes shortcodes for donor registration, donor listings, blood requests, request forms, and donor statistics for easy embedding.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automatic Page Creation\u003C\u002Fstrong>: The plugin automatically creates all necessary pages on activation.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Container Width\u003C\u002Fstrong>: Set custom container widths for plugin pages to optimize display across different devices.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Google reCAPTCHA Integration\u003C\u002Fstrong>: Protect all forms from spam using Google reCAPTCHA.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Single-Country Mode\u003C\u002Fstrong>: Restrict the plugin’s functionality to one country for more targeted usage.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Advanced Social Sharing\u003C\u002Fstrong>: Enable users to share blood requests and donor profiles on social media.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Pages for iDonate\u003C\u002Fstrong>: Use your own custom pages as the main iDonate pages.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Login and Logout Redirect\u003C\u002Fstrong>: Set specific pages to redirect users upon login or logout.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Widgets\u003C\u002Fstrong>: Add custom widgets to display donor statistics and blood requests.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User-Friendly Admin Panel\u003C\u002Fstrong>: Manage all aspects of blood donation and requests with an intuitive admin interface.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multisite Compatibility\u003C\u002Fstrong>: Fully supported in multisite WordPress setups.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multilingual Ready\u003C\u002Fstrong>: Easily translate iDonate into multiple languages.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>RTL Support\u003C\u002Fstrong>: Fully compatible with right-to-left languages.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Widget Support\u003C\u002Fstrong>: Supports custom widgets for better integration.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Theme Compatibility\u003C\u002Fstrong>: Compatible with all WordPress themes.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Advanced Script\u002FCSS Management\u003C\u002Fstrong>: Use advanced settings to enqueue or dequeue scripts and styles.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom CSS Support\u003C\u002Fstrong>: Add custom CSS to override plugin styles as needed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No Coding Required\u003C\u002Fstrong>: We’ve focused on creating an intuitive UI\u002FUX, making it simple for anyone to use. Just activate the plugin, add autometically created pages on your website menu or where ever you want to show. No technical skills are needed—everything is set up quickly and effortlessly!\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developer-Friendly\u003C\u002Fstrong>: Built with developers in mind for easy customization and integration.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SEO Optimized\u003C\u002Fstrong>: The plugin is optimized for search engines to ensure better visibility.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cross-Browser Compatibility\u003C\u002Fstrong>: Works seamlessly across all modern browsers including IE, Firefox, Chrome, Safari, Opera, and Edge.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comprehensive Documentation & Tutorials\u003C\u002Fstrong>: Includes detailed documentation and video tutorials for easy setup and use.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Frequent Updates\u003C\u002Fstrong>: We are continuously enhancing the iDonate plugin with new features, bug fixes, and security improvements. You can count on regular updates to ensure optimal performance and the latest functionalities.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fast and Active Support\u003C\u002Fstrong>: Get quick and responsive support whenever you need help.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Author\u003C\u002Fh4>\n\u003Cp>Designed and Developed with Love by \u003Ca href=\"https:\u002F\u002Fthemeatelier.net\u002F\" rel=\"nofollow ugc\">\u003Cstrong>ThemeAtelier\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>OTHER AMAZING PRODUCTS BY: ThemeAtelier\u003C\u002Fh3>\n\u003Cp>➡️ \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fchat-help\u002F\" rel=\"ugc\">WhatsApp Chat Support\u003C\u002Fa>\u003C\u002Fstrong> – Unlimited customer support tool that allows visitors to engage using “WhatsApp” or “WhatsApp Business”. WhatsApp button included.\u003C\u002Fp>\n\u003Cp>➡️ \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdomain-for-sale\u002F\" rel=\"ugc\">Domain For Sale\u003C\u002Fa>\u003C\u002Fstrong> – Transform your unused domain names into cash with this easy-to-use plugin that provides a professional template, customizable options, and a contact form for effortless selling.\u003C\u002Fp>\n\u003Cp>➡️ \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feventful\u002F\" rel=\"ugc\">Eventful\u003C\u002Fa>\u003C\u002Fstrong> – Elevate your event management with this dynamic addon, enhancing ‘The Events Calendar’ with versatile layouts, advanced filtering, and user-friendly features for superior event showcasing.\u003C\u002Fp>\n\u003Cp>➡️ \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgreet-bubble\u002F\" rel=\"ugc\">Greet – Video Bubble Warm Welcome Plugin\u003C\u002Fa>\u003C\u002Fstrong> – A powerful and user-friendly video bubble plugin for WordPress that provides website owners with the opportunity to create a dynamic and engaging welcome experience for their visitors.\u003C\u002Fp>\n\u003Cp>➡️ \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdarkify\u002F\" rel=\"ugc\">Darkify Dark Mode\u003C\u002Fa>\u003C\u002Fstrong> – Lightweight, customizable WordPress dark mode plugin for a sleek, accessible, and eye-friendly experience on both frontend and admin dashboard.\u003C\u002Fp>\n","A complete WordPress system to handle blood donations, donor records, and urgent requests—ideal for hospitals, NGOs, and clinics.",90,11085,84,5,"2026-03-12T09:34:00.000Z","6.9.4","5.3","7.4",[20,21,22,23,24],"blood","blood-donation","donation","healthcare","medical","https:\u002F\u002Fbloodwp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fidonate.2.1.18.zip",52,8,1,"2026-02-18 16:32:50","2026-03-15T15:16:48.613Z",[33,48,64,77,86,98,109,123],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":29},"CVE-2025-4521","idonate-missing-authorization-to-authenticated-subscriber-account-takeoverprivilege-escalation-via-idonatedonorprofile-f","IDonate 2.1.5 - 2.1.9 - Missing Authorization to Authenticated (Subscriber+) Account Takeover\u002FPrivilege Escalation via idonate_donor_profile Function","The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the idonate_donor_profile() function in versions 2.1.5 to 2.1.9. This makes it possible for authenticated attackers, with Subscriber-level access and above, to hijack any account by reassigning its email address (via the donor_id they supply) and then triggering a password reset, ultimately granting themselves full administrator privileges.",null,">=2.1.5 \u003C=2.1.9","2.1.0","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Improper Authorization","2026-02-19 04:36:11",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F51d4b7f6-183b-4a8d-a94d-83c66950a872?source=api-prod",{"id":49,"url_slug":50,"title":51,"description":52,"plugin_slug":4,"theme_slug":38,"affected_versions":53,"patched_in_version":54,"severity":55,"cvss_score":56,"cvss_vector":57,"vuln_type":58,"published_date":59,"updated_date":60,"references":61,"days_to_patch":63},"CVE-2025-12877","idonate-blood-donation-request-and-donor-management-system-missing-authorization-to-unauthenticated-arbitrary-post-delet","IDonate – Blood Donation, Request And Donor Management System \u003C= 2.1.15 - Missing Authorization to Unauthenticated Arbitrary Post Deletion","The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to unauthorized modification od data due to a missing capability check on the panding_blood_request_action() function in all versions up to, and including, 2.1.15. This makes it possible for unauthenticated attackers to delete arbitrary posts. CVE-2025-67583 is likely a duplicate of this.","\u003C=2.1.14","2.1.16","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2025-11-21 19:24:57","2025-12-11 15:56:31",[62],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F96bd997f-63d5-47a7-b433-486c1113b44b?source=api-prod",20,{"id":65,"url_slug":66,"title":67,"description":68,"plugin_slug":4,"theme_slug":38,"affected_versions":69,"patched_in_version":70,"severity":55,"cvss_score":71,"cvss_vector":72,"vuln_type":58,"published_date":73,"updated_date":74,"references":75,"days_to_patch":29},"CVE-2025-4522","idonate-insecure-direct-object-reference-to-authenticated-subscriber-arbitrary-user-deletion-via-adminpostdonordelete-fu","IDonate 2.0.0 - 2.1.9 - Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary User Deletion via admin_post_donor_delete Function","The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to Insecure Direct Object Reference via the admin_post_donor_delete() function in versions 2.0.0 to 2.1.9. By supplying an arbitrary user_id parameter value to the wp_delete_user() function, authenticated attackers, with Subscriber-level access and above could delete arbitrary user accounts, including those of administrators.",">=2.0.0 \u003C=2.1.9","2.1.10",6.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:H\u002FA:N","2025-11-06 15:39:16","2025-11-07 04:28:55",[76],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fbb0625ec-5ac9-4896-ac11-87fc9287f68a?source=api-prod",{"id":78,"url_slug":79,"title":80,"description":81,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":70,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":82,"updated_date":83,"references":84,"days_to_patch":29},"CVE-2025-4519","idonate-missing-authorization-to-authenticated-subscriber-account-takeoverprivilege-escalation-via-idonatedonorpassword-","IDonate 2.1.5 - 2.1.9 - Missing Authorization to Authenticated (Subscriber+) Account Takeover\u002FPrivilege Escalation via idonate_donor_password Function","The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the idonate_donor_password() function in versions 2.1.5 to 2.1.9. This makes it possible for authenticated attackers, with Subscriber-level access and above, to initiate a password reset for any user (including administrators) and elevate their privileges for full site takeover.","2025-11-06 15:38:30","2025-11-07 04:28:54",[85],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F596aef67-582a-4506-bae9-c7be1899e47a?source=api-prod",{"id":87,"url_slug":88,"title":89,"description":90,"plugin_slug":4,"theme_slug":38,"affected_versions":91,"patched_in_version":92,"severity":55,"cvss_score":56,"cvss_vector":57,"vuln_type":58,"published_date":93,"updated_date":94,"references":95,"days_to_patch":97},"CVE-2025-11154","idonate-missing-authorization","IDonate \u003C 2.1.13 - Missing Authorization","The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to 2.1.13 (exclusive). This makes it possible for unauthenticated attackers to perform an unauthorized action.","\u003C2.1.13","2.1.13","2025-10-28 00:00:00","2025-10-29 15:30:53",[96],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fa1d48bf9-5457-4f17-8081-bad01decbf6a?source=api-prod",2,{"id":99,"url_slug":100,"title":101,"description":102,"plugin_slug":4,"theme_slug":38,"affected_versions":69,"patched_in_version":70,"severity":55,"cvss_score":71,"cvss_vector":103,"vuln_type":104,"published_date":105,"updated_date":106,"references":107,"days_to_patch":29},"CVE-2025-4523","idonate-missing-authorization-to-authenticated-subscriber-sensitive-information-disclosure-via-admindonorprofileview-fun","IDonate 2.0.0 - 2.1.9 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Disclosure via admin_donor_profile_view Function","The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the admin_donor_profile_view() function in versions 2.0.0 to 2.1.9. This makes it possible for authenticated attackers, with Subscriber-level access and above, to expose an administrator’s username, email address, and all donor fields.","CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:N\u002FA:N","Exposure of Sensitive Information to an Unauthorized Actor","2025-07-31 16:22:44","2025-08-01 04:24:29",[108],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F5fe7668b-9d70-44b7-a347-3922c0b8684c?source=api-prod",{"id":110,"url_slug":111,"title":112,"description":113,"plugin_slug":4,"theme_slug":38,"affected_versions":114,"patched_in_version":38,"severity":115,"cvss_score":116,"cvss_vector":117,"vuln_type":118,"published_date":119,"updated_date":120,"references":121,"days_to_patch":38},"CVE-2025-32519","idonate-unauthenticated-local-file-inclusion","IDonate \u003C= 2.1.9 - Unauthenticated Local File Inclusion","The IDonate plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 2.1.9. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file types can be uploaded and included.","\u003C=2.1.9","critical",9.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Improper Control of Filename for Include\u002FRequire Statement in PHP Program ('PHP Remote File Inclusion')","2025-04-09 00:00:00","2025-12-04 20:25:37",[122],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F7857571c-182f-4072-8cae-8b0c1b3a9d31?source=api-prod",{"id":124,"url_slug":125,"title":126,"description":127,"plugin_slug":4,"theme_slug":38,"affected_versions":128,"patched_in_version":129,"severity":55,"cvss_score":130,"cvss_vector":131,"vuln_type":132,"published_date":133,"updated_date":134,"references":135,"days_to_patch":137},"CVE-2024-3594","idonate-blood-request-management-system-authenticated-admin-stored-cross-site-scripting","IDonate – blood request management system \u003C= 1.9.1 - Authenticated (Admin+) Stored Cross-Site Scripting","The IDonate – blood request management system plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.9.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.","\u003C=1.9.1","2.0.0",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-05-01 00:00:00","2024-09-09 20:25:44",[136],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F4ff558bb-7c5a-4e17-a3f5-bc9aa2332af1?source=api-prod",132,{"slug":139,"display_name":7,"profile_url":8,"plugin_count":140,"total_installs":141,"avg_security_score":142,"avg_patch_time_days":143,"trust_score":144,"computed_at":145},"faysal61",7,710,93,21,89,"2026-04-04T00:34:54.798Z",[147,169,191,206,221],{"slug":148,"name":149,"version":150,"author":151,"author_profile":152,"description":153,"short_description":154,"active_installs":155,"downloaded":156,"rating":157,"num_ratings":158,"last_updated":159,"tested_up_to":160,"requires_at_least":161,"requires_php":18,"tags":162,"homepage":166,"download_link":167,"security_score":157,"vuln_count":168,"unpatched_count":168,"last_vuln_date":38,"fetched_at":31},"medical-before-after-gallery","Medical Before After Gallery","1.3.4","WPpluginDev","https:\u002F\u002Fprofiles.wordpress.org\u002Fagskanchana\u002F","\u003Cp>Showcase patient transformations with a clean before\u002Fafter case gallery. Built for cosmetic surgery, dermatology, dental, and aesthetic clinics.\u003C\u002Fp>\n\u003Ch3>Free vs Pro Features\u003C\u002Fh3>\n\u003Cp>Free Features:\u003Cbr \u002F>\n– Basic Before-After Gallery\u003Cbr \u002F>\n– Category Filtering\u003Cbr \u002F>\n– Image Cropping\u003Cbr \u002F>\n– Responsive Design\u003Cbr \u002F>\n– Before-After View Switching\u003Cbr \u002F>\n– Modal Case Navigation\u003Cbr \u002F>\n– Category Navigation\u003C\u002Fp>\n\u003Cp>Pro Features:\u003Cbr \u002F>\n– All Free features\u003Cbr \u002F>\n– Sub Category Support\u003Cbr \u002F>\n– Multiple Before-After Pairs\u003Cbr \u002F>\n– Advanced Filtering (Age, Gender, Procedure)\u003Cbr \u002F>\n– Watermarking Capabilities\u003Cbr \u002F>\n– Additional Images Carousel\u003Cbr \u002F>\n– Sensitive Content Warning\u003Cbr \u002F>\n– Detailed Before-After Case Information\u003Cbr \u002F>\n– Premium Support\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Free Demo:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fdemo.medicalbeforeaftergallery.com\u002Ffree\u002F\" rel=\"nofollow ugc\">View Free Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Pro Demo:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fdemo.medicalbeforeaftergallery.com\u002F\" rel=\"nofollow ugc\">View Pro Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Interactive Image Comparison\u003C\u002Fstrong> – Smooth drag slider for before\u002Fafter reveals\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Category Management\u003C\u002Fstrong> – Organize cases by treatment types\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mobile Responsive\u003C\u002Fstrong> – Optimized for all devices\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Professional Layouts\u003C\u002Fstrong> – Grid and masonry layouts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Color Theming\u003C\u002Fstrong> – Match your brand colors\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multiple View Modes\u003C\u002Fstrong> – Split view, before-only, after-only options\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Perfect For:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Plastic Surgery Clinics\u003Cbr \u002F>\n* Dermatology Practices\u003Cbr \u002F>\n* Dental Offices\u003Cbr \u002F>\n* Aesthetic Medicine Centers\u003Cbr \u002F>\n* Weight Loss Clinics\u003Cbr \u002F>\n* Hair Restoration Clinics\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support and documentation, please visit: https:\u002F\u002Fmedicalbeforeaftergallery.com#support\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>This plugin does not collect any personal data from your visitors. All image processing is done locally on your server.\u003C\u002Fp>\n\u003Ch3>Third Party Libraries\u003C\u002Fh3>\n\u003Cp>This plugin includes Cocoen (https:\u002F\u002Fgithub.com\u002Fkoenoe\u002Fcocoen) – a touch-enabled before\u002Fafter image comparison slider.\u003Cbr \u002F>\nCocoen is licensed under the MIT License (https:\u002F\u002Fgithub.com\u002Fkoenoe\u002Fcocoen\u002Fblob\u002Fmain\u002FLICENSE).\u003C\u002Fp>\n","A simple before-after image gallery plugin designed for medical professionals and healthcare practices.",30,588,100,6,"2026-03-02T10:08:00.000Z","6.8.5","5.0",[163,164,165,23,24],"before-after","comparison","gallery","https:\u002F\u002Fmedicalbeforeaftergallery.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmedical-before-after-gallery.1.3.4.zip",0,{"slug":170,"name":171,"version":172,"author":173,"author_profile":174,"description":175,"short_description":176,"active_installs":177,"downloaded":178,"rating":157,"num_ratings":29,"last_updated":179,"tested_up_to":180,"requires_at_least":181,"requires_php":182,"tags":183,"homepage":188,"download_link":189,"security_score":190,"vuln_count":168,"unpatched_count":168,"last_vuln_date":38,"fetched_at":31},"latest-canadian-healthcare-jobs-sidebar-widget","Latest Canadian Healthcare Jobs sidebar widget","1.00","JAMBA-widgets","https:\u002F\u002Fprofiles.wordpress.org\u002Fjamba-widgets\u002F","\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.hospital.ca\" title=\"Canadian medical and health care job postings\" rel=\"nofollow ugc\">Hospital.ca\u003C\u002Fa> is a job listing service that receives many new Canadian medical and health care job openings every day (doctor\u002Fnurse\u002Ftherapist\u002Fetc). By using this widget you and your site\u002Fblog visitors will be able to see on a clickable map if any are posted nearby (or in a part of the country that you might be interested in moving to).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>You can select a light or a dark color scheme for the widget.\u003C\u002Fli>\n\u003C\u002Ful>\n","Displays a live map of Canada showing the latest jobs posted on the Hospital.ca medical job listing service",10,1521,"2014-04-16T19:51:00.000Z","3.9.40","2.8","",[184,185,23,186,187],"canada","employment","job-listings","medical-jobs","http:\u002F\u002Fwww.hospital.ca\u002Fdata","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flatest-canadian-healthcare-jobs-sidebar-widget.zip",85,{"slug":192,"name":193,"version":194,"author":193,"author_profile":195,"description":196,"short_description":197,"active_installs":168,"downloaded":198,"rating":168,"num_ratings":168,"last_updated":199,"tested_up_to":16,"requires_at_least":200,"requires_php":18,"tags":201,"homepage":182,"download_link":205,"security_score":157,"vuln_count":168,"unpatched_count":168,"last_vuln_date":38,"fetched_at":31},"docid","DocID","1.1.1","https:\u002F\u002Fprofiles.wordpress.org\u002Fdocid\u002F","\u003Cp>DocID is the leading authentication and marketing platform designed specifically for the healthcare and pharmaceutical industry. The plugin enables WordPress site owners to restrict access to content under the German Drug Advertising Act (HWG) and similar European regulations, ensuring only verified healthcare professionals can access and view restricted medical content.\u003C\u002Fp>\n\u003Cp>Whether you’re promoting medical products, hosting webinars, or sharing sensitive content, DocID offers instant and secure verification of HCPs — all without the need for managing login infrastructure or storing personal user data.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>✅ \u003Cstrong>Compliant Verification\u003C\u002Fstrong> — Authenticate doctors, pharmacists, and other healthcare professionals in full accordance with legal standards.\u003C\u002Fp>\n\u003Cp>⚡ \u003Cstrong>Instant Access\u003C\u002Fstrong> — No passwords, no waiting time, no hassle. HCPs get instantly verified and immediate access to your content.\u003C\u002Fp>\n\u003Cp>🔐 \u003Cstrong>Secure & GDPR-Compliant\u003C\u002Fstrong> — Avoid handling PII. All data is protected according to the highest IT security and privacy standards.\u003C\u002Fp>\n\u003Cp>🔍 \u003Cstrong>User Insights & Analytics\u003C\u002Fstrong> — Gain valuable insights about your audience and campaign activities.\u003C\u002Fp>\n\u003Cp>🎯 \u003Cstrong>Targeted Content\u003C\u002Fstrong> — Redirect users by profession, language, or country.\u003C\u002Fp>\n\u003Cp>📊 \u003Cstrong>Campaign Management\u003C\u002Fstrong> — Create campaign links, track performance, collect consents, and much more with the DocID business modules.\u003C\u002Fp>\n\u003Ch3>Additional Resources\u003C\u002Fh3>\n\u003Cp>Learn more about DocID at \u003Ca href=\"https:\u002F\u002Fdocid.de\u002Findustry\" rel=\"nofollow ugc\">https:\u002F\u002Fdocid.de\u002Findustry\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>More about authentication requirements and healthcare regulations:\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwww.pharma-marketing.com\u002Fglossary\u002Flogin-for-healthcare-professionals\u002F\" rel=\"nofollow ugc\">Login for Healthcare Professionals\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwww.pharma-marketing.com\u002Fglossary\u002Fgerman-drug-advertising-act-hwg\u002F\" rel=\"nofollow ugc\">German Drug Advertising Act (HWG)\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwww.pharma-marketing.com\u002Fglossary\u002Fmedical-products-act\u002F\" rel=\"nofollow ugc\">German Medical Products Act\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Data-privacy and external Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to an API to obtain user’s information, it’s needed to allow users to login on the website and ensure their medical professional status.\u003C\u002Fp>\n\u003Cp>It receives the user’s information every time the user is loggedin to the website.\u003C\u002Fp>\n\u003Cp>This service is provided by 8awake GmbH: \u003Ca href=\"https:\u002F\u002Fdocid.de\u002Fdata-privacy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fdocid.de\u002Fterms-of-use\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>DocID is a service offer from \u003Ca href=\"https:\u002F\u002Fwww.8awake.com\" rel=\"nofollow ugc\">8awake\u003C\u002Fa>.\u003C\u002Fp>\n","The DocID plugin provides functionalities required for a secure and legally compliant authentication of healthcare professionals on your website.",505,"2026-03-12T11:24:00.000Z","6.2",[23,202,203,24,204],"login","marketing","pharma","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdocid.zip",{"slug":207,"name":208,"version":209,"author":210,"author_profile":211,"description":212,"short_description":213,"active_installs":168,"downloaded":137,"rating":168,"num_ratings":168,"last_updated":214,"tested_up_to":16,"requires_at_least":161,"requires_php":18,"tags":215,"homepage":219,"download_link":220,"security_score":157,"vuln_count":168,"unpatched_count":168,"last_vuln_date":38,"fetched_at":31},"doctor-eve-wachttijden","Doctor Eve – Wachttijden","3.0.0","devlinkros","https:\u002F\u002Fprofiles.wordpress.org\u002Fdevlinkros\u002F","\u003Cp>\u003Cstrong>Note:\u003C\u002Fstrong> This plugin connects to the Doctor Eve API to retrieve waiting time data. By configuring your Clinic UUID and activating the plugin, you consent to sending requests to \u003Ccode>https:\u002F\u002Fapi.doctoreve.com\u003C\u002Fcode>. No personal user data is collected or transmitted. For more information, see the \u003Ca href=\"https:\u002F\u002Fdoctoreve.com\u002Fprivacy\" rel=\"nofollow ugc\">Doctor Eve Privacy Policy\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Doctor Eve – Wachttijden allows healthcare clinics to display their treatment waiting times on their WordPress website. The plugin offers two display methods:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Floating Button\u003C\u002Fstrong>\u003Cbr \u002F>\nA customizable floating button that appears on all pages, opening a popup with your clinic’s waiting times when clicked.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Embeddable Component\u003C\u002Fstrong>\u003Cbr \u002F>\nA shortcode-based component that can be placed anywhere on your website, with full customization options for styling and layout.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Floating button with on\u002Foff toggle\u003C\u002Fli>\n\u003Cli>Embeddable component via \u003Ccode>[doctoreve_wt]\u003C\u002Fcode> shortcode\u003C\u002Fli>\n\u003Cli>5 beautiful themes: Doctor Eve, Corporate, Soft, Dark, Minimal\u003C\u002Fli>\n\u003Cli>Customizable colors, sizes, and styling\u003C\u002Fli>\n\u003Cli>Search functionality for treatments\u003C\u002Fli>\n\u003Cli>Expandable treatment lists\u003C\u002Fli>\n\u003Cli>Mobile-responsive design\u003C\u002Fli>\n\u003Cli>Accessibility compliant\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shortcode Usage\u003C\u002Fh4>\n\u003Cp>Basic usage:\u003Cbr \u002F>\n [doctoreve_wt]\u003C\u002Fp>\n\u003Cp>With customization:\u003Cbr \u002F>\n [doctoreve_wt theme=”dark” width=”600px” limit=”10″ shadow=”true”]\u003C\u002Fp>\n\u003Ch4>Available Shortcode Attributes\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ccode>theme\u003C\u002Fcode> – Theme style (doctor-eve, corporate, soft, dark, minimal)\u003C\u002Fli>\n\u003Cli>\u003Ccode>accent_color\u003C\u002Fcode> – Custom accent color (hex code)\u003C\u002Fli>\n\u003Cli>\u003Ccode>title\u003C\u002Fcode> – Title above the list (empty to hide)\u003C\u002Fli>\n\u003Cli>\u003Ccode>width\u003C\u002Fcode> – Component width (e.g., “600px” or “100%”)\u003C\u002Fli>\n\u003Cli>\u003Ccode>max_height\u003C\u002Fcode> – Maximum height with scroll\u003C\u002Fli>\n\u003Cli>\u003Ccode>limit\u003C\u002Fcode> – Number of items to show initially (0 for all)\u003C\u002Fli>\n\u003Cli>\u003Ccode>show_search\u003C\u002Fcode> – Show search bar (true\u002Ffalse)\u003C\u002Fli>\n\u003Cli>\u003Ccode>show_count\u003C\u002Fcode> – Show treatment count (true\u002Ffalse)\u003C\u002Fli>\n\u003Cli>\u003Ccode>border\u003C\u002Fcode> – Show border (true\u002Ffalse)\u003C\u002Fli>\n\u003Cli>\u003Ccode>shadow\u003C\u002Fcode> – Show shadow (true\u002Ffalse)\u003C\u002Fli>\n\u003Cli>\u003Ccode>class\u003C\u002Fcode> – Additional CSS classes\u003C\u002Fli>\n\u003C\u002Ful>\n","Display waiting times for medical treatments with a floating button and\u002For embeddable components via shortcode.","2026-02-06T14:26:00.000Z",[216,23,24,217,218],"clinic","wachttijden","waiting-times","https:\u002F\u002Fadmin.doctoreve.com\u002Fdoctoreve-wachttijden","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdoctor-eve-wachttijden.zip",{"slug":222,"name":223,"version":224,"author":225,"author_profile":226,"description":227,"short_description":228,"active_installs":229,"downloaded":230,"rating":231,"num_ratings":232,"last_updated":233,"tested_up_to":16,"requires_at_least":234,"requires_php":18,"tags":235,"homepage":240,"download_link":241,"security_score":242,"vuln_count":243,"unpatched_count":168,"last_vuln_date":244,"fetched_at":31},"give","GiveWP – Donation Plugin and Fundraising Platform","4.14.3","StellarWP","https:\u002F\u002Fprofiles.wordpress.org\u002Fstellarwp\u002F","\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fhome\" title=\"Visit the GiveWP website\" rel=\"nofollow ugc\">GiveWP\u003C\u002Fa>\u003C\u002Fstrong> is the highest rated, most downloaded, and best supported donation plugin for WordPress. Whether you need a simple donate button or a powerful donation platform optimized for online giving, GiveWP is right for you.\u003C\u002Fp>\n\u003Cp>Transform the way you accept online donations, starting for free. With GiveWP you can accept gifts for charity or for other purposes, through customizable donation forms. Our donation plugin also allows you to view donor data and fundraising reports, manage donors, and integrate with a wide variety of third-party gateways and services.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FdFjYyWLyB-k?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>✨ GiveWP Features\u003C\u002Fh3>\n\u003Cp>GiveWP is free and full of many advanced features to suit your needs. Start by choosing one of our donation form templates to create your first fundraising campaign. Then, take advantage of full-featured fundraising reports and donor management tools to increase your overall fundraising revenue by learning what makes donors donate.\u003C\u002Fp>\n\u003Cp>Free donor tools also help keep your donors happy. The donor dashboard helps your donor base easily manage their accounts and access their donation history. With our \u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Faddons\" title=\"See all our Premium Add-ons\" rel=\"nofollow ugc\">premium add-ons\u003C\u002Fa>, you can add additional donor tools, like annual receipts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdocs.givewp.com\u002Fcampaigns-release-readme\" title=\"See how powerful our fundraising campaigns and forms can be\" rel=\"nofollow ugc\">Campaign-Based Fundraising and Forms\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>GiveWP makes it easy to manage and launch successful fundraising campaigns directly from your WordPress site. Whether you’re raising funds for a single project, a long-term cause, or a series of initiatives, GiveWP’s campaign-based approach helps you streamline your efforts and maximize your fundraising potential.\u003C\u002Fp>\n\u003Ch4>\u003Cstrong>Key Features of Campaign-Based Fundraising\u003C\u002Fstrong>\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Campaign Creation:\u003C\u002Fstrong> Create multiple campaigns on your site, each with its own unique donation goal, target audience, and messaging.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Donation Forms:\u003C\u002Fstrong> Each campaign comes with a built-in, fully customizable landing page, created using the WordPress Block Editor. Add text, images, and donation forms to create a visually appealing and engaging page that strengthens your donor connections.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dedicated Landing Pages:\u003C\u002Fstrong> Create custom landing pages for each campaign, complete with campaign-specific content, donation forms, progress bars, and social sharing options to engage and inspire donors.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Organized Fundraising\u003C\u002Fstrong>: All your donation forms are linked to specific campaigns. This makes it easy to manage and track your efforts, set goals, and monitor campaign performance in one streamlined view.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Visibility Controls\u003C\u002Fstrong>: Publish, archive, or draft campaigns to manage when and how your campaigns appear on your site. This gives you full control over the visibility of your campaigns and associated donation forms.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>\u003Cstrong>How Campaigns and Donation Forms Work Together\u003C\u002Fstrong>\u003C\u002Fh4>\n\u003Cp>GiveWP’s donation forms seamlessly integrate with your campaigns, allowing you to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create forms that directly support the campaign’s fundraising goals.\u003C\u002Fli>\n\u003Cli>Customize form fields to match the needs of your campaign, whether it’s a specific project or a general cause.\u003C\u002Fli>\n\u003Cli>Promote campaigns via donation forms displayed on any page on your website.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Campaigns offer more flexibility, better control, and enhanced organization for your fundraising efforts, making it easier to achieve your goals and connect with donors. Whether you’re running a large-scale initiative or multiple smaller projects, Campaigns will help you streamline the process and improve your overall fundraising strategy.\u003C\u002Fp>\n\u003Cp>Never used blocks before? No worries – \u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fvisual-builder\" rel=\"nofollow ugc\">we’ve got you covered with our guide\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Ffeatures-reports\" title=\"See our gorgeous and helpful reports dashboards\" rel=\"nofollow ugc\">Actionable Fundraising Reporting\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Get a detailed breakdown of your donation activity\u003C\u002Fli>\n\u003Cli>Control your fundraising data with exports and reports\u003C\u002Fli>\n\u003Cli>Filter reports by date, form, and payment method\u003C\u002Fli>\n\u003Cli>Measure performance across multiple campaigns\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Ffeatures-donor-management\" title=\"See how our donor management tools help you enhance donor loyalty\" rel=\"nofollow ugc\">Complete Donor Management\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>View a complete history of your donor activity\u003C\u002Fli>\n\u003Cli>Generate tax-deductible receipts\u003C\u002Fli>\n\u003Cli>Allow donors to view their donation history, update their profile, manage their recurring donations, and download PDF receipts through their own donor dashboard\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Find out more:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fhome\" title=\"Visit the GiveWP website\" rel=\"nofollow ugc\">Visit the GiveWP website\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fvisual-builder\" rel=\"nofollow ugc\">Read our Docs on How to Use the Visual Form Builder\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Faddons\" title=\"See all GiveWP Add-ons\" rel=\"nofollow ugc\">View GiveWP Premium Add-ons\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Ffreeadds\" title=\"See our free Add-ons\" rel=\"nofollow ugc\">View GiveWP Free Add-ons\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fcsdemo\" title=\"Book a demo with our team\" rel=\"nofollow ugc\">Book a Live Demo with our Team\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🧑🏿‍🤝‍🧑🏿 Who Uses GiveWP?\u003C\u002Fh3>\n\u003Cp>With more than 100,000+ active installs of GiveWP, we hear more and more success stories from nonprofit organizations. Causes are using GiveWP to raise millions of dollars per year. Check out some of our GiveWP Stories and Case Studies for details about their success.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fcmstory\" rel=\"nofollow ugc\">The City Mission used GiveWP\u003C\u002Fa> for Giving Tuesday and a competition fundraiser with a neighboring organization, where they raised $45K in 16 hours.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fmemstory\" rel=\"nofollow ugc\">A local neighborhood watch program\u003C\u002Fa> switched from using GoFundMe to GiveWP and raised $40,000 in five days for a memorial fundraiser.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Freadivan\" rel=\"nofollow ugc\">Fans of Ivan the Gorilla have kept his memory alive\u003C\u002Fa> by fundraising for a conservancy program in his name.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Ftwiststory\" rel=\"nofollow ugc\">A hospital raised money\u003C\u002Fa> through a community-wide virtual dance party during the pandemic.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fquiltlove\" rel=\"nofollow ugc\">Quiltlove\u003C\u002Fa>, which provides personalized quilts for different life events (like new babies, extended hospital stays, and more), uses GiveWP to create a sustainable business model.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fniels-vink\" rel=\"nofollow ugc\">Niels Vink, a Dutch wheelchair tennis player\u003C\u002Fa>, uses GiveWP to raise money to train, travel, and participate in competitions. At the 2021 Tokyo Paralympics, Vink earned a gold medal in doubles and a bronze medal in singles.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>In addition to nonprofit organizations, GiveWP is widely used for individual or creative purposes. We’ve seen tip jars for blogs or musicians, live streams, and more. Our \u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fwooread\" rel=\"nofollow ugc\">Donation Upsells for WooCommerce Add-on\u003C\u002Fa> is even used in some eCommerce stores to collect donations for a cause, or ask for tips in the cart or checkout.\u003C\u002Fp>\n\u003Cp>We’ve even seen GiveWP used to collect gifts for birthdays and weddings!\u003C\u002Fp>\n\u003Ch3>💝 Simple and Pain-Free Giving\u003C\u002Fh3>\n\u003Cp>We built GiveWP to be the best WordPress donation plugin from day one. Simply install and activate the plugin to get started.\u003C\u002Fp>\n\u003Cp>The strength of GiveWP lies within its optimized donation forms. When creating a form, you can start with a template and customize the donation levels, including allowing donors to give a custom amount. The donation forms can then be displayed anywhere on your website using a block, shortcode, widget, or the single donation form page.\u003Cbr \u002F>\nYou can also integrate your forms with a wide variety of payment processors, including PayPal and Stripe within the free plugin. You can also purchase add-ons to use Authorize,net, Bitpay, Square, and more.\u003C\u002Fp>\n\u003Ch3>🌱 First Time Users\u003C\u002Fh3>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FUNRa8Dc6Ayc?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>For new users, we suggest reviewing our \u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Frmgettingstarted\" title=\"Visit the GiveWP Getting Started Guide\" rel=\"nofollow ugc\">Getting Started Guide\u003C\u002Fa> to get an understanding of how the plugin works. If you run into any trouble, we offer \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fgive\" title=\"Visit the GiveWP support page on WordPress.org\" rel=\"ugc\">free support\u003C\u002Fa> to help you with your issues, questions, and concerns.\u003C\u002Fp>\n\u003Cp>If you are a GiveWP customer with an active license of any of our popular add-ons, we’d love to hear from you and support you via our \u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fsupport\" rel=\"nofollow ugc\">Priority Support channel\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>💳 Accept Credit Card Donations and More\u003C\u002Fh3>\n\u003Cp>GiveWP comes with several payment gateway options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Stripe Donations\u003C\u002Fstrong> — Accept donations through any payment method (like Apple Pay, Google Pay, or ACH) activated in your Stripe accounts. Additional fees may apply for free users. Read our \u003Ca href=\"https:\u002F\u002Fdocs.givewp.com\u002Fstripe-fees\" rel=\"nofollow ugc\">Stripe documentation\u003C\u002Fa> for more information.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>PayPal Donations\u003C\u002Fstrong> — Allow worldwide donations with PayPal Donations. No additional fees applied.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Venmo Donations\u003C\u002Fstrong> — Give donors the option to pay through Venmo with their account balance or connected bank account.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Offline Donations\u003C\u002Fstrong> — Enable your donors to send checks or physical donations with an offline gateway with instructions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Test Gateway\u003C\u002Fstrong> — use the Test Gateway to see exactly how your donors will walk through the donation process.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>And many more Gateways\u003C\u002Fstrong> – View additional payment gateways on our website. These include Authorize.net, Bitpay, Square, Razorpay, Paytm, and more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>In-Person Donations (Tap To Pay)\u003C\u002Fstrong> — Accept swipe, insert, or Tap to Pay card donations right from your mobile device or Stripe reader with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjovvie-in-person-payments-givewp\u002F\" rel=\"ugc\">Jovvie\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>⚙️ Extend GiveWP with Powerful Add-ons\u003C\u002Fh3>\n\u003Cp>GiveWP’s goal is to “Democratize Generosity.” We want to make it easy for \u003Cem>everyone\u003C\u002Fem> to raise funds online.\u003C\u002Fp>\n\u003Cp>In addition to our free donation plugin, we have \u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Faddons\" title=\"View all of GiveWP's Premium Add-ons\" rel=\"nofollow ugc\">premium GiveWP add-ons\u003C\u002Fa> available to extend the functionality of GiveWP. Ultimately, these tools allow you to raise more money and give you a better relationship with your donors.\u003C\u002Fp>\n\u003Cp>Must-Have Add-ons for GiveWP:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Faddon-recurring\" rel=\"nofollow ugc\">WordPress Recurring Donations\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fp2pread\" rel=\"nofollow ugc\">Peer-to-Peer Fundraising\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Ftext-to-give\" rel=\"nofollow ugc\">Text-to-Give\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fform-field\" rel=\"nofollow ugc\">Form Field Manager\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Ffee-recovery\" rel=\"nofollow ugc\">Fee Recovery\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Ftributes\" rel=\"nofollow ugc\">Tributes\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgivewp.com\u002Faddons\u002Fpdf-receipts\u002F\" rel=\"nofollow ugc\">PDF Receipts\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fread-funds-des\" rel=\"nofollow ugc\">Funds & Designations\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Faddons\" title=\"View all GiveWP add-ons\" rel=\"nofollow ugc\">View all of GiveWP’s Add-ons\u003C\u002Fa> to discover all the ways you can further enhance and extend GiveWP.\u003C\u002Fp>\n\u003Ch3>🛠️ Easy to Customize and Enhance\u003C\u002Fh3>\n\u003Cp>Are you a developer? GiveWP is built with best practices and easy to extend and customize. Here are some great developer-oriented tutorials and docs to help you customize GiveWP to your liking:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fblog-emails\" rel=\"nofollow ugc\">Create Dramatic Donation Email Receipts\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fblog-populate\" rel=\"nofollow ugc\">Populate Donor Info with One Click\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fblog-api\" rel=\"nofollow ugc\">Using the GiveWP API to Create Charts with ChartJS\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fdocs-theming\" rel=\"nofollow ugc\">Theming with GiveWP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fdocs-custom-fields\" rel=\"nofollow ugc\">How to Create Custom Form Fields in GiveWP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fgatewaydoc\" rel=\"nofollow ugc\">How to Build a Gateway Add-on for GiveWP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fstyledoc\" rel=\"nofollow ugc\">How to Style Your GiveWP Forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fdatalossdoc\" rel=\"nofollow ugc\">Site Redesigns Without Donation Data Loss\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fcssdoc\" rel=\"nofollow ugc\">Handling Custom CSS in WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>💚 About the GiveWP Team\u003C\u002Fh3>\n\u003Cp>GiveWP is part of StellarWP, a Liquid Web Family Brand. Our donation plugin is backed by a growing team of WordPress developers, support engineers, customer success managers, and marketing professionals who’ve worked with WordPress and nonprofits since 2009. This means GiveWP is made with best practices in mind; extremely extensible and customizable, stable, and reliable. We’ll be here in years to come for you and your nonprofit organization.\u003C\u002Fp>\n\u003Ch3>📧 Connect with GiveWP\u003C\u002Fh3>\n\u003Cp>Stay in touch with us for important plugin news and updates:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fhome\" title=\"Visit the GiveWP website\" rel=\"nofollow ugc\">GiveWP Website\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fsubscribe\" title=\"Subscribe to GiveWP via MailChimp\" rel=\"nofollow ugc\">GiveWP Newsletter\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Ffb\" title=\"Visit the GiveWP on Facebook\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Faddons\" title=\"View all GiveWP Add-ons\" rel=\"nofollow ugc\">GiveWP Add-ons\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Frmwrite4us\" rel=\"nofollow ugc\">Write for GiveWP\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🐱‍💻 Contribute to GiveWP\u003C\u002Fh3>\n\u003Cp>This plugin is proudly open source (GPL license) and we’re always looking for more contributors. Whether you know another language, love to code, or just have an idea, we would love your help and input.\u003C\u002Fp>\n\u003Cp>Here’s a few ways you can contribute to GiveWP:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Star\u002Ffork\u002Fwatch the \u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fgithub\" rel=\"nofollow ugc\">GiveWP GitHub repository\u003C\u002Fa> to learn more about what issues we’re tackling and the project is developing. If you’ve never worked with Github before, learn about \u003Ca href=\"https:\u002F\u002Fhelp.github.com\u002Farticles\u002Fabout-pull-requests\u002F\" rel=\"nofollow ugc\">pull requests here\u003C\u002Fa> and submit one for GiveWP, we’d love to give you our feedback.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Translate GiveWP into your native language. The best place to do that is here on wordpress.org. Go to \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fgive\" rel=\"nofollow ugc\">https:\u002F\u002Ftranslate.wordpress.org\u002F\u003C\u002Fa>, then search for your language, click the “Plugins” tab, then search for “GiveWP”. When you’ve submitted at least 95% of GiveWP’s strings, the language moderators will review and approve your translations and then they will be available to all WordPress users for your native language. If you are interested in translating any of our Premium Add-ons, \u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Fcontact\" rel=\"nofollow ugc\">contact us\u003C\u002Fa>, we’d love to chat with you about that.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Join the \u003Ca href=\"https:\u002F\u002Fgo.givewp.com\u002Ffb-group\" rel=\"nofollow ugc\">GiveWP Community Facebook group\u003C\u002Fa>. We chat about all things related to WordPress, GiveWP, fundraising, and online donations in general.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Accept donations and begin fundraising with GiveWP, the highest rated WordPress donation plugin for online giving.",100000,10990560,92,695,"2026-03-11T18:43:00.000Z","6.6",[236,237,22,238,239],"crowdfunding","donate","fundraising","recurring-donations","https:\u002F\u002Fgivewp.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgive.4.14.3.zip",76,69,"2026-01-08 00:00:00",{"attackSurface":246,"codeSignals":571,"taintFlows":888,"riskAssessment":1046,"analyzedAt":1061},{"hooks":247,"ajaxHandlers":465,"restRoutes":549,"shortcodes":550,"cronEvents":569,"entryPointCount":535,"unprotectedCount":570},[248,254,259,263,267,272,276,279,284,288,292,296,301,306,310,313,315,318,321,324,327,332,336,339,343,347,350,354,358,363,367,371,375,378,381,386,390,395,399,405,409,412,416,420,424,427,430,434,436,438,440,443,447,451,453,455,457,459,462],{"type":249,"name":250,"callback":251,"file":252,"line":253},"action","activated_plugin","idonate_redirect_to","idonate.php",63,{"type":249,"name":255,"callback":256,"file":257,"line":258},"after_setup_theme","init_components","src\\Admin\\Admin.php",79,{"type":249,"name":260,"callback":261,"file":257,"line":262},"admin_menu","add_plugin_page",80,{"type":249,"name":264,"callback":265,"file":257,"line":266},"admin_post_donor_delete","idonate_donor_delete",81,{"type":268,"name":269,"callback":270,"file":257,"line":271},"filter","manage_blood_request_posts_columns","add_custom_columns_blood_request",87,{"type":249,"name":273,"callback":274,"priority":177,"file":257,"line":275},"manage_blood_request_posts_custom_column","custom_column_content_blood_request",88,{"type":268,"name":277,"callback":278,"file":257,"line":144},"manage_edit-blood_request_sortable_columns","custom_columns_sortable_blood_request",{"type":249,"name":280,"callback":281,"file":282,"line":283},"admin_footer","deactivate_scripts","src\\Admin\\appsero\\Insights.php",122,{"type":249,"name":285,"callback":286,"file":282,"line":287},"admin_notices","admin_notice",141,{"type":249,"name":289,"callback":290,"file":282,"line":291},"admin_init","handle_optin_optout",144,{"type":268,"name":293,"callback":294,"file":282,"line":295},"cron_schedules","add_weekly_schedule",150,{"type":249,"name":297,"callback":298,"file":299,"line":300},"plugins_loaded","perform_updates","src\\Admin\\DBUpdates.php",36,{"type":249,"name":302,"callback":303,"priority":177,"file":304,"line":305},"wp_enqueue_scripts","collect_output_css_and_typography","src\\Admin\\Framework\\Classes\\abstract.class.php",23,{"type":249,"name":255,"callback":307,"file":308,"line":309},"setup","src\\Admin\\Framework\\Classes\\IDONATE.php",82,{"type":249,"name":311,"callback":307,"file":308,"line":312},"init",83,{"type":249,"name":314,"callback":307,"file":308,"line":13},"switch_theme",{"type":249,"name":316,"callback":317,"file":308,"line":190},"admin_enqueue_scripts","add_admin_enqueue_scripts",{"type":249,"name":302,"callback":319,"priority":262,"file":308,"line":320},"add_typography_enqueue_styles",86,{"type":249,"name":322,"callback":323,"priority":262,"file":308,"line":271},"wp_head","add_custom_css",{"type":268,"name":325,"callback":326,"file":308,"line":275},"admin_body_class","add_admin_body_class",{"type":249,"name":328,"callback":329,"file":330,"line":331},"add_meta_boxes","add_meta_box","src\\Admin\\Framework\\Classes\\IDONATE_Metabox.php",60,{"type":249,"name":333,"callback":334,"file":330,"line":335},"save_post","save_meta_box",61,{"type":249,"name":337,"callback":334,"file":330,"line":338},"edit_attachment",62,{"type":249,"name":260,"callback":340,"file":341,"line":342},"add_admin_menu","src\\Admin\\Framework\\Classes\\IDONATE_Options.php",114,{"type":249,"name":344,"callback":345,"file":341,"line":346},"admin_bar_menu","add_admin_bar_menu",115,{"type":249,"name":348,"callback":340,"file":341,"line":349},"network_admin_menu",119,{"type":268,"name":351,"callback":352,"file":341,"line":353},"admin_footer_text","add_admin_footer_text",508,{"type":249,"name":289,"callback":355,"file":356,"line":357},"add_taxonomy_options","src\\Admin\\Framework\\Classes\\IDONATE_Taxonomy_Options.php",47,{"type":249,"name":359,"callback":360,"file":361,"line":362},"admin_print_footer_scripts","add_wp_link_dialog","src\\Admin\\Framework\\fields\\link\\link.php",67,{"type":249,"name":364,"callback":365,"file":366,"line":362},"print_default_editor_scripts","setup_wp_editor_media_buttons","src\\Admin\\Framework\\fields\\wp_editor\\wp_editor.php",{"type":249,"name":285,"callback":368,"file":369,"line":370},"display_admin_notice","src\\Admin\\ReviewNotice\\ReviewNotice.php",28,{"type":249,"name":285,"callback":372,"file":373,"line":374},"render_offer_banner","src\\Admin\\ReviewNotice\\ThemeAtelier_Offer_Banner.php",37,{"type":249,"name":311,"callback":376,"file":377,"line":243},"idonate_create_page_plugin_loaded","src\\Admin\\updates\\update-2.1.0.php",{"type":249,"name":311,"callback":379,"file":377,"line":380},"idonate_flush_rewrite_rules_on_update",77,{"type":249,"name":382,"callback":383,"file":384,"line":385},"widgets_init","idonate_statistics_widget","src\\Admin\\Views\\Statistics.php",112,{"type":249,"name":382,"callback":387,"file":388,"line":389},"idonate_blood_requestload_widget","src\\Admin\\Views\\WidgetBloodRequiest.php",145,{"type":268,"name":391,"callback":392,"file":393,"line":394},"query_vars","idonate_register_query_vars","src\\Frontend\\Helpers\\RewriteRules.php",27,{"type":249,"name":396,"callback":397,"file":393,"line":398},"generate_rewrite_rules","add_rewrite_rules",29,{"type":268,"name":400,"callback":401,"priority":402,"file":403,"line":404},"template_include","donor_public_profile",99,"src\\Frontend\\Helpers\\Template.php",31,{"type":268,"name":406,"callback":407,"file":408,"line":374},"single_template","idonate_custom_post_type_single_template","src\\Helpers\\helper-functions.php",{"type":268,"name":400,"callback":410,"file":408,"line":411},"idonate_custom_post_type_template",54,{"type":249,"name":413,"callback":414,"priority":177,"file":408,"line":415},"login_redirect","idonate_redirect_login_page",346,{"type":249,"name":417,"callback":418,"file":408,"line":419},"wp_login_failed","idonate_login_failed",358,{"type":249,"name":421,"callback":422,"file":408,"line":423},"wp_logout","idonate_logout_page",378,{"type":249,"name":311,"callback":425,"file":408,"line":426},"idonate_auto_request_delete",460,{"type":249,"name":255,"callback":428,"file":408,"line":429},"idonate_add_image_size",523,{"type":249,"name":280,"callback":431,"file":432,"line":433},"donor_noform_popup","src\\Helpers\\TaT_Donor.php",26,{"type":249,"name":280,"callback":435,"file":432,"line":394},"jstmpl_donor_profile_view",{"type":249,"name":280,"callback":437,"file":432,"line":370},"jstmpl_donor_profile_edit",{"type":249,"name":280,"callback":439,"file":432,"line":398},"jstmpl_donor_profile_delete",{"type":249,"name":311,"callback":441,"file":442,"line":320},"idoante_load_text_domain","src\\Idonate.php",{"type":268,"name":444,"callback":445,"file":442,"line":446},"show_admin_bar","closure",95,{"type":249,"name":448,"callback":449,"file":442,"line":450},"wp_loaded","anonymous",181,{"type":249,"name":302,"callback":449,"file":442,"line":452},182,{"type":249,"name":311,"callback":449,"file":442,"line":454},208,{"type":249,"name":316,"callback":449,"file":442,"line":456},209,{"type":249,"name":316,"callback":449,"file":442,"line":458},210,{"type":268,"name":460,"callback":449,"file":442,"line":461},"post_updated_messages",211,{"type":268,"name":463,"callback":449,"file":442,"line":464},"term_updated_messages",212,[466,469,472,474,475,476,481,484,487,490,493,496,500,504,506,508,510,513,515,518,520,521,522,526,528,531,532,534,536,539,542,544,547],{"action":467,"nopriv":468,"callback":467,"hasNonce":468,"hasCapCheck":468,"file":257,"line":309},"admin_donor_profile_view",false,{"action":470,"nopriv":468,"callback":471,"hasNonce":468,"hasCapCheck":468,"file":257,"line":312},"country_to_states_ajax","idonate_country_to_states_ajax",{"action":470,"nopriv":473,"callback":471,"hasNonce":468,"hasCapCheck":468,"file":257,"line":13},true,{"action":471,"nopriv":468,"callback":471,"hasNonce":468,"hasCapCheck":468,"file":257,"line":190},{"action":471,"nopriv":473,"callback":471,"hasNonce":468,"hasCapCheck":468,"file":257,"line":320},{"action":477,"nopriv":468,"callback":478,"hasNonce":473,"hasCapCheck":468,"file":479,"line":480},"idonate-get-icons","idonate_get_icons","src\\Admin\\Framework\\functions\\actions.php",50,{"action":482,"nopriv":468,"callback":483,"hasNonce":473,"hasCapCheck":468,"file":479,"line":190},"idonate-export","idonate_export",{"action":485,"nopriv":468,"callback":486,"hasNonce":473,"hasCapCheck":468,"file":479,"line":349},"idonate-import","idonate_import_ajax",{"action":488,"nopriv":468,"callback":489,"hasNonce":473,"hasCapCheck":468,"file":479,"line":291},"idonate-reset","idonate_reset_ajax",{"action":491,"nopriv":468,"callback":492,"hasNonce":473,"hasCapCheck":473,"file":479,"line":450},"idonate-chosen","idonate_chosen_ajax",{"action":494,"nopriv":468,"callback":495,"hasNonce":473,"hasCapCheck":468,"file":369,"line":398},"idonate-never-show-review-notice","dismiss_review_notice",{"action":497,"nopriv":468,"callback":498,"hasNonce":473,"hasCapCheck":468,"file":373,"line":499},"themeatelier_dismiss_offer_banner","dismiss_offer_banner",38,{"action":501,"nopriv":468,"callback":501,"hasNonce":468,"hasCapCheck":468,"file":502,"line":503},"idonate_post_popup","src\\Frontend\\Frontend.php",64,{"action":501,"nopriv":473,"callback":501,"hasNonce":468,"hasCapCheck":468,"file":502,"line":505},65,{"action":507,"nopriv":468,"callback":507,"hasNonce":468,"hasCapCheck":468,"file":502,"line":362},"idonate_post_admin_popup_next_prev",{"action":507,"nopriv":473,"callback":507,"hasNonce":468,"hasCapCheck":468,"file":502,"line":509},68,{"action":511,"nopriv":468,"callback":511,"hasNonce":468,"hasCapCheck":468,"file":502,"line":512},"idonate_search_donors",70,{"action":511,"nopriv":473,"callback":511,"hasNonce":468,"hasCapCheck":468,"file":502,"line":514},71,{"action":516,"nopriv":468,"callback":516,"hasNonce":468,"hasCapCheck":468,"file":502,"line":517},"idonate_search_request",73,{"action":516,"nopriv":473,"callback":516,"hasNonce":468,"hasCapCheck":468,"file":502,"line":519},74,{"action":471,"nopriv":468,"callback":471,"hasNonce":468,"hasCapCheck":468,"file":502,"line":242},{"action":471,"nopriv":473,"callback":471,"hasNonce":468,"hasCapCheck":468,"file":502,"line":380},{"action":523,"nopriv":468,"callback":523,"hasNonce":473,"hasCapCheck":468,"file":524,"line":525},"idonate_donor_popup","src\\Helpers\\IDonateAjaxHandler.php",33,{"action":523,"nopriv":473,"callback":523,"hasNonce":473,"hasCapCheck":468,"file":524,"line":527},34,{"action":529,"nopriv":468,"callback":529,"hasNonce":473,"hasCapCheck":468,"file":524,"line":530},"idonate_blood_request_popup",35,{"action":529,"nopriv":473,"callback":529,"hasNonce":473,"hasCapCheck":468,"file":524,"line":300},{"action":533,"nopriv":468,"callback":533,"hasNonce":473,"hasCapCheck":473,"file":524,"line":499},"panding_donor_action",{"action":533,"nopriv":473,"callback":533,"hasNonce":473,"hasCapCheck":473,"file":524,"line":535},39,{"action":537,"nopriv":468,"callback":537,"hasNonce":473,"hasCapCheck":473,"file":524,"line":538},"panding_blood_request_action",41,{"action":540,"nopriv":468,"callback":540,"hasNonce":473,"hasCapCheck":468,"file":524,"line":541},"idonate_request_popup_modal",43,{"action":540,"nopriv":473,"callback":540,"hasNonce":473,"hasCapCheck":468,"file":524,"line":543},44,{"action":545,"nopriv":468,"callback":545,"hasNonce":473,"hasCapCheck":468,"file":524,"line":546},"idonate_request_popup_next_prev",45,{"action":545,"nopriv":473,"callback":545,"hasNonce":473,"hasCapCheck":468,"file":524,"line":548},46,[],[551,554,557,560,563,566],{"tag":552,"callback":449,"file":442,"line":553},"donors",190,{"tag":555,"callback":449,"file":442,"line":556},"register-donor",191,{"tag":558,"callback":449,"file":442,"line":559},"donortable",192,{"tag":561,"callback":449,"file":442,"line":562},"post-blood-request",193,{"tag":564,"callback":449,"file":442,"line":565},"blood-request",194,{"tag":567,"callback":449,"file":442,"line":568},"idonate-statistics",195,[],15,{"dangerousFunctions":572,"sqlUsage":573,"outputEscaping":579,"fileOperations":29,"externalRequests":97,"nonceChecks":300,"capabilityChecks":883,"bundledLibraries":884},[],{"prepared":574,"raw":29,"locations":575},4,[576],{"file":282,"line":577,"context":578},478,"$wpdb->get_var() with variable interpolation",{"escaped":580,"rawEcho":581,"locations":582},1765,170,[583,586,588,590,592,594,596,598,600,602,604,606,608,610,612,614,616,618,620,622,624,625,627,628,629,632,634,636,638,640,642,644,646,648,651,653,655,657,658,659,661,662,665,667,668,669,671,674,676,678,680,682,684,685,686,688,689,691,692,694,696,698,700,702,704,706,708,710,712,713,715,716,717,718,719,720,721,722,724,726,727,729,731,732,734,736,738,739,741,743,745,747,749,750,752,754,756,758,760,762,764,766,768,770,772,774,776,779,781,783,784,785,787,789,791,792,793,794,795,796,797,798,799,800,801,802,803,805,807,809,811,813,814,817,820,822,823,824,825,826,828,830,833,835,836,837,838,839,841,843,845,846,849,852,854,855,857,859,861,863,865,867,869,871,873,874,876,878,879,881],{"file":282,"line":584,"context":585},400,"raw output",{"file":282,"line":587,"context":585},402,{"file":282,"line":589,"context":585},403,{"file":282,"line":591,"context":585},406,{"file":282,"line":593,"context":585},774,{"file":282,"line":595,"context":585},786,{"file":282,"line":597,"context":585},822,{"file":282,"line":599,"context":585},857,{"file":282,"line":601,"context":585},879,{"file":282,"line":603,"context":585},883,{"file":282,"line":605,"context":585},942,{"file":308,"line":607,"context":585},625,{"file":308,"line":609,"context":585},628,{"file":330,"line":611,"context":585},201,{"file":330,"line":613,"context":585},295,{"file":330,"line":615,"context":585},310,{"file":330,"line":617,"context":585},311,{"file":330,"line":619,"context":585},321,{"file":341,"line":621,"context":585},593,{"file":341,"line":623,"context":585},689,{"file":341,"line":141,"context":585},{"file":626,"line":525,"context":585},"src\\Admin\\Framework\\fields\\backup\\backup.php",{"file":626,"line":300,"context":585},{"file":626,"line":499,"context":585},{"file":630,"line":631,"context":585},"src\\Admin\\Framework\\fields\\border\\border.php",105,{"file":630,"line":633,"context":585},108,{"file":630,"line":635,"context":585},130,{"file":630,"line":637,"context":585},133,{"file":630,"line":639,"context":585},143,{"file":630,"line":641,"context":585},161,{"file":630,"line":643,"context":585},162,{"file":630,"line":645,"context":585},171,{"file":630,"line":647,"context":585},172,{"file":649,"line":650,"context":585},"src\\Admin\\Framework\\fields\\column\\column.php",96,{"file":649,"line":652,"context":585},118,{"file":654,"line":548,"context":585},"src\\Admin\\Framework\\fields\\group\\group.php",{"file":654,"line":656,"context":585},57,{"file":654,"line":385,"context":585},{"file":654,"line":389,"context":585},{"file":654,"line":660,"context":585},146,{"file":361,"line":543,"context":585},{"file":663,"line":664,"context":585},"src\\Admin\\Framework\\fields\\repeater\\repeater.php",32,{"file":663,"line":666,"context":585},53,{"file":663,"line":266,"context":585},{"file":663,"line":142,"context":585},{"file":663,"line":670,"context":585},94,{"file":672,"line":673,"context":585},"src\\Admin\\Framework\\fields\\typography\\typography.php",101,{"file":672,"line":675,"context":585},102,{"file":672,"line":677,"context":585},110,{"file":672,"line":679,"context":585},111,{"file":672,"line":681,"context":585},142,{"file":672,"line":683,"context":585},158,{"file":672,"line":581,"context":585},{"file":672,"line":647,"context":585},{"file":672,"line":687,"context":585},180,{"file":672,"line":450,"context":585},{"file":672,"line":690,"context":585},200,{"file":672,"line":611,"context":585},{"file":672,"line":693,"context":585},217,{"file":672,"line":695,"context":585},218,{"file":672,"line":697,"context":585},235,{"file":672,"line":699,"context":585},236,{"file":672,"line":701,"context":585},261,{"file":672,"line":703,"context":585},273,{"file":672,"line":705,"context":585},285,{"file":672,"line":707,"context":585},297,{"file":672,"line":709,"context":585},312,{"file":672,"line":711,"context":585},323,{"file":366,"line":320,"context":585},{"file":479,"line":714,"context":585},42,{"file":479,"line":266,"context":585},{"file":369,"line":512,"context":585},{"file":369,"line":512,"context":585},{"file":369,"line":514,"context":585},{"file":369,"line":514,"context":585},{"file":369,"line":514,"context":585},{"file":369,"line":514,"context":585},{"file":369,"line":723,"context":585},72,{"file":369,"line":725,"context":585},75,{"file":369,"line":242,"context":585},{"file":369,"line":728,"context":585},78,{"file":730,"line":266,"context":585},"src\\Admin\\Views\\IdonateDashboardwidgets.php",{"file":730,"line":144,"context":585},{"file":730,"line":733,"context":585},120,{"file":730,"line":735,"context":585},128,{"file":737,"line":503,"context":585},"src\\Frontend\\Manager.php",{"file":737,"line":142,"context":585},{"file":737,"line":740,"context":585},121,{"file":737,"line":742,"context":585},131,{"file":737,"line":744,"context":585},324,{"file":737,"line":746,"context":585},336,{"file":737,"line":748,"context":585},341,{"file":737,"line":415,"context":585},{"file":737,"line":751,"context":585},351,{"file":737,"line":753,"context":585},357,{"file":737,"line":755,"context":585},363,{"file":737,"line":757,"context":585},369,{"file":737,"line":759,"context":585},375,{"file":737,"line":761,"context":585},381,{"file":737,"line":763,"context":585},387,{"file":737,"line":765,"context":585},392,{"file":737,"line":767,"context":585},397,{"file":737,"line":769,"context":585},405,{"file":737,"line":771,"context":585},412,{"file":737,"line":773,"context":585},418,{"file":737,"line":775,"context":585},424,{"file":777,"line":778,"context":585},"src\\Frontend\\Shortcode\\ShortcodePostBloodRequest.php",202,{"file":780,"line":394,"context":585},"src\\Frontend\\Templates\\blood-request.php",{"file":782,"line":374,"context":585},"src\\Frontend\\Templates\\dashboard\\dashboard.php",{"file":782,"line":411,"context":585},{"file":782,"line":505,"context":585},{"file":786,"line":525,"context":585},"src\\Frontend\\Templates\\dashboard\\my-profile.php",{"file":786,"line":788,"context":585},56,{"file":786,"line":790,"context":585},59,{"file":786,"line":338,"context":585},{"file":786,"line":505,"context":585},{"file":786,"line":509,"context":585},{"file":786,"line":514,"context":585},{"file":786,"line":519,"context":585},{"file":786,"line":380,"context":585},{"file":786,"line":262,"context":585},{"file":786,"line":312,"context":585},{"file":786,"line":320,"context":585},{"file":786,"line":144,"context":585},{"file":786,"line":231,"context":585},{"file":786,"line":446,"context":585},{"file":804,"line":525,"context":585},"src\\Frontend\\Templates\\dashboard\\settings\\address.php",{"file":806,"line":398,"context":585},"src\\Frontend\\Templates\\dashboard\\settings\\reset-password.php",{"file":808,"line":155,"context":585},"src\\Frontend\\Templates\\dashboard\\settings\\social-profile.php",{"file":810,"line":535,"context":585},"src\\Frontend\\Templates\\donor-login.php",{"file":810,"line":812,"context":585},49,{"file":810,"line":812,"context":585},{"file":815,"line":816,"context":585},"src\\Frontend\\Templates\\donor-table.php",22,{"file":818,"line":819,"context":585},"src\\Frontend\\Templates\\donors.php",25,{"file":821,"line":505,"context":585},"src\\Frontend\\Templates\\FilterBar.php",{"file":821,"line":362,"context":585},{"file":821,"line":517,"context":585},{"file":821,"line":13,"context":585},{"file":821,"line":142,"context":585},{"file":821,"line":827,"context":585},97,{"file":829,"line":819,"context":585},"src\\Frontend\\Templates\\post-blood-request.php",{"file":831,"line":832,"context":585},"src\\Frontend\\Templates\\register-donor.php",40,{"file":834,"line":725,"context":585},"src\\Frontend\\Templates\\RequestFilterBar.php",{"file":834,"line":380,"context":585},{"file":834,"line":309,"context":585},{"file":834,"line":312,"context":585},{"file":834,"line":144,"context":585},{"file":834,"line":840,"context":585},98,{"file":834,"line":842,"context":585},103,{"file":844,"line":790,"context":585},"src\\Frontend\\Templates\\single-blood_request.php",{"file":844,"line":517,"context":585},{"file":847,"line":848,"context":585},"src\\Frontend\\Templates\\single-donor.php",107,{"file":850,"line":851,"context":585},"src\\Helpers\\Helpers.php",566,{"file":850,"line":853,"context":585},583,{"file":524,"line":635,"context":585},{"file":524,"line":856,"context":585},276,{"file":524,"line":858,"context":585},280,{"file":524,"line":860,"context":585},284,{"file":524,"line":862,"context":585},288,{"file":524,"line":864,"context":585},292,{"file":524,"line":866,"context":585},296,{"file":524,"line":868,"context":585},300,{"file":524,"line":870,"context":585},304,{"file":524,"line":872,"context":585},308,{"file":524,"line":709,"context":585},{"file":524,"line":875,"context":585},316,{"file":524,"line":877,"context":585},320,{"file":524,"line":744,"context":585},{"file":524,"line":880,"context":585},642,{"file":524,"line":882,"context":585},742,18,[885],{"name":886,"version":38,"knownCves":887},"DataTables",[],[889,910,923,933,944,955,965,976,984,995,1007,1015,1026,1037],{"entryPoint":890,"graph":891,"unsanitizedCount":574,"severity":55},"donor_popup_views_html (src\\Frontend\\Manager.php:156)",{"nodes":892,"edges":907},[893,897,902,905],{"id":894,"type":895,"label":896,"file":737,"line":683},"n0","source","$_POST (x13)",{"id":898,"type":899,"label":900,"file":737,"line":559,"wp_function":901},"n1","sink","echo() [XSS]","echo",{"id":903,"type":895,"label":904,"file":737,"line":683},"n2","$_POST (x4)",{"id":906,"type":899,"label":900,"file":737,"line":568,"wp_function":901},"n3",[908,909],{"from":894,"to":898,"sanitized":473},{"from":903,"to":906,"sanitized":468},{"entryPoint":911,"graph":912,"unsanitizedCount":29,"severity":55},"idonate_recaptcha_response (src\\Helpers\\DonorFunctions.php:666)",{"nodes":913,"edges":921},[914,918],{"id":894,"type":895,"label":915,"file":916,"line":917},"$_POST['g-recaptcha-response']","src\\Helpers\\DonorFunctions.php",679,{"id":898,"type":899,"label":919,"file":916,"line":917,"wp_function":920},"file_get_contents() [SSRF\u002FLFI]","file_get_contents",[922],{"from":894,"to":898,"sanitized":468},{"entryPoint":924,"graph":925,"unsanitizedCount":168,"severity":932},"idonate_export (src\\Admin\\Framework\\functions\\actions.php:61)",{"nodes":926,"edges":930},[927,929],{"id":894,"type":895,"label":928,"file":479,"line":503},"$_GET",{"id":898,"type":899,"label":900,"file":479,"line":266,"wp_function":901},[931],{"from":894,"to":898,"sanitized":473},"low",{"entryPoint":934,"graph":935,"unsanitizedCount":168,"severity":932},"idonate_import_ajax (src\\Admin\\Framework\\functions\\actions.php:96)",{"nodes":936,"edges":942},[937,939],{"id":894,"type":895,"label":938,"file":479,"line":402},"$_POST (x2)",{"id":898,"type":899,"label":940,"file":479,"line":346,"wp_function":941},"update_option() [Settings Manipulation]","update_option",[943],{"from":894,"to":898,"sanitized":473},{"entryPoint":945,"graph":946,"unsanitizedCount":168,"severity":932},"\u003Cactions> (src\\Admin\\Framework\\functions\\actions.php:0)",{"nodes":947,"edges":952},[948,949,950,951],{"id":894,"type":895,"label":928,"file":479,"line":503},{"id":898,"type":899,"label":900,"file":479,"line":266,"wp_function":901},{"id":903,"type":895,"label":938,"file":479,"line":402},{"id":906,"type":899,"label":940,"file":479,"line":346,"wp_function":941},[953,954],{"from":894,"to":898,"sanitized":473},{"from":903,"to":906,"sanitized":473},{"entryPoint":956,"graph":957,"unsanitizedCount":168,"severity":932},"\u003Cdonor-panel> (src\\Admin\\Helpers\\donor-panel.php:0)",{"nodes":958,"edges":963},[959,962],{"id":894,"type":895,"label":960,"file":961,"line":664},"$_GET['action']","src\\Admin\\Helpers\\donor-panel.php",{"id":898,"type":899,"label":900,"file":961,"line":664,"wp_function":901},[964],{"from":894,"to":898,"sanitized":473},{"entryPoint":966,"graph":967,"unsanitizedCount":168,"severity":932},"dismiss_offer_banner (src\\Admin\\ReviewNotice\\ThemeAtelier_Offer_Banner.php:149)",{"nodes":968,"edges":974},[969,972],{"id":894,"type":895,"label":970,"file":373,"line":971},"$_POST",151,{"id":898,"type":899,"label":940,"file":373,"line":973,"wp_function":941},153,[975],{"from":894,"to":898,"sanitized":473},{"entryPoint":977,"graph":978,"unsanitizedCount":168,"severity":932},"\u003CThemeAtelier_Offer_Banner> (src\\Admin\\ReviewNotice\\ThemeAtelier_Offer_Banner.php:0)",{"nodes":979,"edges":982},[980,981],{"id":894,"type":895,"label":970,"file":373,"line":971},{"id":898,"type":899,"label":940,"file":373,"line":973,"wp_function":941},[983],{"from":894,"to":898,"sanitized":473},{"entryPoint":985,"graph":986,"unsanitizedCount":168,"severity":932},"donor_request_popup_views_html (src\\Frontend\\Manager.php:291)",{"nodes":987,"edges":993},[988,991],{"id":894,"type":895,"label":989,"file":737,"line":990},"$_POST (x19)",293,{"id":898,"type":899,"label":900,"file":737,"line":992,"wp_function":901},322,[994],{"from":894,"to":898,"sanitized":473},{"entryPoint":996,"graph":997,"unsanitizedCount":574,"severity":932},"\u003CManager> (src\\Frontend\\Manager.php:0)",{"nodes":998,"edges":1004},[999,1001,1002,1003],{"id":894,"type":895,"label":1000,"file":737,"line":683},"$_POST (x32)",{"id":898,"type":899,"label":900,"file":737,"line":559,"wp_function":901},{"id":903,"type":895,"label":904,"file":737,"line":683},{"id":906,"type":899,"label":900,"file":737,"line":568,"wp_function":901},[1005,1006],{"from":894,"to":898,"sanitized":473},{"from":903,"to":906,"sanitized":468},{"entryPoint":1008,"graph":1009,"unsanitizedCount":168,"severity":932},"\u003CDonorFunctions> (src\\Helpers\\DonorFunctions.php:0)",{"nodes":1010,"edges":1013},[1011,1012],{"id":894,"type":895,"label":915,"file":916,"line":917},{"id":898,"type":899,"label":919,"file":916,"line":917,"wp_function":920},[1014],{"from":894,"to":898,"sanitized":473},{"entryPoint":1016,"graph":1017,"unsanitizedCount":168,"severity":932},"idonate_donor_popup (src\\Helpers\\IDonateAjaxHandler.php:140)",{"nodes":1018,"edges":1024},[1019,1022],{"id":894,"type":895,"label":1020,"file":524,"line":1021},"$_POST (x17)",152,{"id":898,"type":899,"label":900,"file":524,"line":1023,"wp_function":901},177,[1025],{"from":894,"to":898,"sanitized":473},{"entryPoint":1027,"graph":1028,"unsanitizedCount":168,"severity":932},"idonate_blood_request_popup (src\\Helpers\\IDonateAjaxHandler.php:241)",{"nodes":1029,"edges":1035},[1030,1033],{"id":894,"type":895,"label":1031,"file":524,"line":1032},"$_POST (x16)",248,{"id":898,"type":899,"label":900,"file":524,"line":1034,"wp_function":901},271,[1036],{"from":894,"to":898,"sanitized":473},{"entryPoint":1038,"graph":1039,"unsanitizedCount":168,"severity":932},"\u003CIDonateAjaxHandler> (src\\Helpers\\IDonateAjaxHandler.php:0)",{"nodes":1040,"edges":1044},[1041,1043],{"id":894,"type":895,"label":1042,"file":524,"line":1021},"$_POST (x33)",{"id":898,"type":899,"label":900,"file":524,"line":1023,"wp_function":901},[1045],{"from":894,"to":898,"sanitized":473},{"summary":1047,"deductions":1048},"The \"idonate\" plugin v2.1.18 exhibits a concerning security posture, despite some positive indicators. While the plugin demonstrates good practices in SQL query sanitization (80% prepared statements) and output escaping (91% properly escaped), these strengths are overshadowed by significant weaknesses. The presence of 15 unprotected AJAX handlers represents a substantial attack surface, creating numerous potential entry points for unauthorized actions. Furthermore, the vulnerability history is alarming, with a total of 8 known CVEs, including one critical and two high-severity issues. The fact that one critical vulnerability remains unpatched is a severe immediate risk. The common vulnerability types found, such as Improper Authorization, Missing Authorization, and Cross-site Scripting, suggest a pattern of insecure handling of user input and access control. The plugin's last known vulnerability was as recent as February 2026, indicating ongoing security flaws or slow patching practices. While the absence of critical taint flows is a positive sign, the combination of a large unprotected attack surface and a history of critical and high-severity vulnerabilities, including an unpatched one, points to a high-risk plugin.",[1049,1051,1053,1055,1057,1059],{"reason":1050,"points":63},"Unpatched Critical CVE",{"reason":1052,"points":177},"15 unprotected AJAX handlers",{"reason":1054,"points":570},"1 Critical CVE (historical)",{"reason":1056,"points":177},"2 High CVEs (historical)",{"reason":1058,"points":177},"Flows with unsanitized paths",{"reason":1060,"points":177},"Large attack surface without auth","2026-03-16T21:19:16.918Z",{"wat":1063,"direct":1128},{"assetPaths":1064,"generatorPatterns":1094,"scriptPaths":1095,"versionParams":1096},[1065,1066,1067,1068,1069,1070,1071,1072,1073,1074,1075,1076,1077,1078,1079,1080,1081,1082,1083,1084,1085,1086,1087,1088,1089,1090,1091,1092,1087,1093],"\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FAdmin\u002Fcss\u002Fidonate-admin.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fcss\u002Fidonate-frontend.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fcss\u002Fdonation-form.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fcss\u002Fresponsive.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fcss\u002Fbootstrap.min.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fcss\u002Fcustom.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fcss\u002Fowl.carousel.min.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fcss\u002Fjquery.dataTables.min.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fcss\u002Fjquery.dataTables.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fcss\u002Fselect2.min.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fcss\u002Fsweetalert2.min.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fcss\u002Fanimate.min.css","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fjs\u002Fjquery.validate.min.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fjs\u002Fbootstrap.bundle.min.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fjs\u002Fjquery.dataTables.min.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fjs\u002Fowl.carousel.min.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fjs\u002Fselect2.min.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fjs\u002Fsweetalert2.min.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fjs\u002Fcustom.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FFrontend\u002Fjs\u002Fdonation-form.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FAdmin\u002Fjs\u002Fidonate-admin.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FAdmin\u002Fjs\u002Fidonate-dashboard.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FAdmin\u002Fjs\u002Fidonate-settings.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FAdmin\u002Fjs\u002Fidonate-donor-profile.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FAdmin\u002Fjs\u002Fidonate-donor-list.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FAdmin\u002Fjs\u002Fidonate-blood-request.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FAdmin\u002Fjs\u002Fidonate-campaign.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FAdmin\u002Fjs\u002Fidonate-donation.js","\u002Fwp-content\u002Fplugins\u002Fidonate\u002Fsrc\u002FAdmin\u002Fappsero\u002Fjs\u002Fappsero-admin-script.js",[],[1093],[1097,1098,1099,1100,1101,1102,1103,1104,1105,1106,1107,1108,1109,1110,1111,1112,1113,1114,1115,1116,1117,1118,1119,1120,1121,1122,1123,1124,1125,1126,1121,1127],"idonate\u002Fstyle.css?ver=","idonate\u002Fscript.js?ver=","idonate-admin.css?ver=","idonate-frontend.css?ver=","donation-form.css?ver=","responsive.css?ver=","bootstrap.min.css?ver=","custom.css?ver=","owl.carousel.min.css?ver=","jquery.dataTables.min.css?ver=","jquery.dataTables.css?ver=","select2.min.css?ver=","sweetalert2.min.css?ver=","animate.min.css?ver=","jquery.validate.min.js?ver=","bootstrap.bundle.min.js?ver=","jquery.dataTables.min.js?ver=","owl.carousel.min.js?ver=","select2.min.js?ver=","sweetalert2.min.js?ver=","custom.js?ver=","donation-form.js?ver=","idonate-admin.js?ver=","idonate-dashboard.js?ver=","idonate-settings.js?ver=","idonate-donor-profile.js?ver=","idonate-donor-list.js?ver=","idonate-blood-request.js?ver=","idonate-campaign.js?ver=","idonate-donation.js?ver=","appsero-admin-script.js?ver=",{"cssClasses":1129,"htmlComments":1157,"htmlAttributes":1182,"restEndpoints":1199,"jsGlobals":1200,"shortcodeOutput":1210},[1130,1131,1132,1133,1134,1135,1136,1137,1138,1139,1140,1141,1142,1143,1144,1145,1146,1147,1148,1149,1150,1151,1152,1153,1154,1155,1156],"idonate_page_content","idonate-user-heading-bar","idoante-user-heading-bar-left","idoante-user-heading-bar-right","idonate-btn-primary","idonate-btn-secondary","idonate-btn-pro","idonate_pending_list_wrapper","idonate-metabox-fields","idonate-form-group","idonate-label","idonate-input-field","idonate-select-field","idonate-textarea-field","idonate-submit-button","idonate-donor-table","idonate-campaign-table","idonate-donation-table","idonate-settings-section","idonate-settings-field","idonate-settings-label","idonate-settings-input","idonate-settings-select","idonate-settings-textarea","idonate-dashboard-widget","idonate-dashboard-widget-title","idonate-dashboard-widget-content",[1158,1159,1160,1161,1162,1163,1164,1165,1166,1167,1168,1169,1170,1171,1172,1173,1174,1175,1176,1177,1178,1179,1180,1181],"\u003C!-- ThemeAtelier_Offer_Banner::instance() -->","\u003C!-- idonate_metaboxes -->","\u003C!-- idonate_settings -->","\u003C!-- Load donor panel template -->","\u003C!-- Load donation-form template -->","\u003C!-- Load donor-list template -->","\u003C!-- Load blood-request template -->","\u003C!-- Load campaign-list template -->","\u003C!-- Load donation-list template -->","\u003C!-- Load dashboard template -->","\u003C!-- Load single-blood-request template -->","\u003C!-- Load single-donation template -->","\u003C!-- Load single-donor template -->","\u003C!-- Load single-campaign template -->","\u003C!-- IDonate AJAX -->","\u003C!-- Admin Donor Profile View -->","\u003C!-- Country to States Ajax -->","\u003C!-- IDonate Settings Page -->","\u003C!-- IDonate Donor Settings Page -->","\u003C!-- IDonate Settings Update -->","\u003C!-- IDonate Donor Settings Update -->","\u003C!-- IDonate Blood Request Settings Update -->","\u003C!-- IDonate Campaign Settings Update -->","\u003C!-- IDonate Donation Settings Update -->",[1183,1184,1185,1186,1187,1188,1189,1190,1191,1192,1193,1194,1195,1196,1197,1198],"data-idonate-country-field","data-idonate-state-field","data-idonate-city-field","data-idonate-country-id","data-idonate-state-id","data-idonate-city-id","data-idonate-ajax-url","data-idonate-nonce","idonate-field-group","idonate-field-label","idonate-field-input","idonate-field-select","idonate-field-textarea","idonate-form-submit","idonate-data-remove","idonate-settings-group",[],[1201,1202,1203,1204,1205,1206,1207,1208,1209,1202],"idonate_ajax_object","idonate_donation_script_vars","idonate_admin_script_vars","idonate_dashboard_script_vars","idonate_settings_script_vars","idonate_donor_profile_script_vars","idonate_donor_list_script_vars","idonate_blood_request_script_vars","idonate_campaign_script_vars",[1211,1212,1213,1214,1215,1216,1217,1218,1219],"\u003Cdiv class=\"idonate_shortcode_wrapper\">","\u003Cdiv id=\"idonate-donation-form-container\">","\u003Cdiv id=\"idonate-donor-list-container\">","\u003Cdiv id=\"idonate-blood-request-list-container\">","\u003Cdiv id=\"idonate-campaign-list-container\">","\u003Cdiv id=\"idonate-recent-donations-list-container\">","\u003Cdiv class=\"idonate_campaign_details\">","\u003Cdiv class=\"idonate_donor_profile\">","\u003Cdiv class=\"idonate_blood_request_details\">"]