Vulnerability List

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2024-2261	Event Tickets and Registration <= 5.8.2 - Improper Authorization to Information Disclosure	stellarwp	Event Tickets and Registration	Medium	4.3	2024-04-09 18:58:41	Deep Dive
CVE-2023-27459	WordPress User Registration plugin <= 2.3.2.1 - Authenticated PHP Object Injection vulnerability	WPEverest	User Registration	High	7.4	2024-03-26 20:01:36	Deep Dive
CVE-2024-2780	Campcodes Online Marriage Registration System admin-profile.php cross site scripting	Campcodes	Online Marriage Registration System	Low	3.5	2024-03-22 01:31:04	Deep Dive
CVE-2024-2779	Campcodes Online Marriage Registration System application-bwdates-reports-details.php cross site scripting	Campcodes	Online Marriage Registration System	Low	3.5	2024-03-22 01:00:07	Deep Dive
CVE-2024-2778	Campcodes Online Marriage Registration System search.php cross site scripting	Campcodes	Online Marriage Registration System	Low	3.5	2024-03-22 00:31:04	Deep Dive
CVE-2024-2777	Campcodes/PHPGurukul Online Marriage Registration System application-bwdates-reports-details.php sql injection	Campcodes	Online Marriage Registration System	Medium	6.3	2024-03-22 00:00:10	Deep Dive
CVE-2024-2776	Campcodes Online Marriage Registration System search.php sql injection	Campcodes	Online Marriage Registration System	Medium	6.3	2024-03-21 23:31:04	Deep Dive
CVE-2024-2775	Campcodes Online Marriage Registration System user-profile.php cross site scripting	Campcodes	Online Marriage Registration System	Low	3.5	2024-03-21 23:00:09	Deep Dive
CVE-2024-2774	Campcodes Online Marriage Registration System search.php sql injection	Campcodes	Online Marriage Registration System	Medium	6.3	2024-03-21 23:00:07	Deep Dive
CVE-2024-2773	Campcodes Online Marriage Registration System search.php cross site scripting	Campcodes	Online Marriage Registration System	Low	3.5	2024-03-21 22:31:05	Deep Dive
CVE-2024-1806	ProfilePress <= 4.15.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via profilepress-edit-profile Shortcode	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.4	2024-03-13 15:27:17	Deep Dive
CVE-2024-1409	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.15.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via [reg-select-role] Shortcode	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.4	2024-03-13 15:26:49	Deep Dive
CVE-2024-1535	ProfilePress <= 4.15.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.4	2024-03-13 15:26:44	Deep Dive
CVE-2024-1158	Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) <= 2.8.7 - Missing Authorization	themekraft	Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC)	Medium	4.3	2024-03-13 15:26:35	Deep Dive
CVE-2024-1071	WordPress Plugin Ultimate Member 安全漏洞	ultimatemember	Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin	Critical	9.8	2024-03-13 15:26:32	Deep Dive
CVE-2024-2123	Ultimate Member <= 2.8.3 - Unauthenticated Stored Cross-Site Scripting	ultimatemember	Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin	High	7.2	2024-03-13 09:35:15	Deep Dive
CVE-2024-1290	Formidable Registration < 2.12 - Contributor+ Arbitrary User Password Reset To Account Takeover	Unknown	User Registration	-	-	2024-03-11 17:56:06	Deep Dive
CVE-2024-1169	Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) <= 2.8.7 - Missing Authorization to Unauthenticated Media Upload	themekraft	Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC)	High	7.5	2024-03-07 11:01:58	Deep Dive
CVE-2024-1170	Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) <= 2.8.7 - Missing Authorization to Unauthenticated Media Deletion	themekraft	Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC)	High	8.2	2024-03-07 11:01:58	Deep Dive
CVE-2024-1720	User Registration – Custom Registration Form, Login Form, and User Profile WordPress Plugin <= 3.1.4 - Unauthenticated Stored Self-Based Cross-Site Scripting	wpeverest	User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder	Medium	4.7	2024-03-07 05:32:39	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List