CVE-2025-12877 | IDonate Plugin up to 2.1.15 on WordPress panding_blood_request_action authorization

A vulnerability was found in IDonate Plugin up to 2.1.15 on WordPress. It has been declared as critical. This impacts the function panding_blood_request_action. The manipulation results in missing authorization.

This vulnerability is identified as CVE-2025-12877. The attack can be executed remotely. There is not any exploit available.