WordPress Plugin 'Recurring Donations' Allows Unauthenticated Access

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

WordPress Plugin 'Recurring Donations' Allows Unauthenticated Access

CVE-2026-27320

Summary

A WordPress plugin allows attackers to access sensitive data without a login. This plugin is used by some websites to manage donations. If not updated, it can cause unauthorized access to donor information and other sensitive data.

Original title

Rejected reason: Not used

Original description

Rejected reason: Not used

Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026