CVE-2026-4650 | thimpress FundPress Plugin up to 2.0.8 on WordPress AJAX donate_action_status authorization

A vulnerability described as critical has been identified in thimpress FundPress Plugin up to 2.0.8 on WordPress. This impacts the function donate_action_status of the component AJAX Handler. Executing a manipulation can lead to missing authorization.

This vulnerability is registered as CVE-2026-4650. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More