AdAstraCrypto Donation Box Without Access Controls Allows Unauthorized Access

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

AdAstraCrypto Donation Box Without Access Controls Allows Unauthorized Access

CVE-2026-39691

Summary

The AdAstraCrypto Cryptocurrency Donation Box did not properly control access to its features, allowing unauthorized individuals to potentially exploit this security weakness. This affects the security of donations made through the box. To protect your donations, update the software to the latest version.

Original title

Original description

Missing Authorization vulnerability in AdAstraCrypto Cryptocurrency Donation Box – Bitcoin & Crypto Donations cryptocurrency-donation-box allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cryptocurrency Donation Box – Bitcoin & Crypto Donations: from n/a through <= 2.2.13.

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/cryptocurrency-donation-box/vul...

Published: 8 Apr 2026 · Updated: 9 Apr 2026 · First seen: 8 Apr 2026