Vulnerability List - Page 13

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2025-24868	Open Redirect Vulnerability in SAP HANA extended application services, advanced model (User Account and Authentication Services)	SAP_SE	SAP HANA extended application services, advanced model (User Account and Authentication Services)	High	7.1	2025-02-11 00:35:43	Deep Dive
CVE-2025-25140	WordPress Simple User Profile plugin <= 1.9 - CSRF to Stored XSS vulnerability	Scriptonite	Simple User Profile	High	7.1	2025-02-07 10:11:50	Deep Dive
CVE-2025-23581	WordPress Demo User DZS plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability	digitalzoomstudio	Demo User DZS	Medium	6.5	2025-02-03 14:22:42	Deep Dive
CVE-2024-12037	Frontend Content Forms for User Submissions (UGC) <= 2.8.13 - Authenticated (Contributor+) Stored Cross-Site Scripting	themekraft	Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC)	Medium	6.4	2025-01-31 11:11:11	Deep Dive
CVE-2024-13222	User Messages <= 1.2.4 - Reflected XSS	Unknown	User Messages	中危	-	2025-01-31 06:00:16	Deep Dive
CVE-2024-13646	Single-user-chat <= 0.5 - Authenticated (Subscriber+) Limited Options Update	aakashbhagat23	Single-user-chat	High	8.1	2025-01-30 13:42:04	Deep Dive
CVE-2024-13370	Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress <= 1.3.3 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update (save_addon_key_license)	youzify	Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress	Medium	6.5	2025-01-25 07:24:20	Deep Dive
CVE-2024-13368	Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress <= 1.3.4 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update	youzify	Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress	Medium	4.3	2025-01-25 07:24:17	Deep Dive
CVE-2024-12113	Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress By KaineLabs <= 1.3.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Review Deletion	youzify	Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress	Medium	4.3	2025-01-25 07:24:16	Deep Dive
CVE-2025-23953	WordPress user files plugin <= 2.4.2 - Arbitrary File Upload vulnerability	Scriptonite	user files	Critical	10.0	2025-01-22 14:29:25	Deep Dive
CVE-2025-0308	Ultimate Member <= 2.9.1 - Unauthenticated SQL Injection	ultimatemember	Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin	High	7.5	2025-01-18 05:33:50	Deep Dive
CVE-2025-0318	Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin <= 2.9.1 - Information Exposure	ultimatemember	Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin	Medium	5.3	2025-01-18 05:33:49	Deep Dive
CVE-2025-23778	WordPress User Sync ActiveCampaign plugin <= 1.3.2 - Broken Access Control vulnerability	Pravin Durugkar	User Sync ActiveCampaign	Medium	5.4	2025-01-16 20:06:58	Deep Dive
CVE-2024-10789	WP User Profile Avatar <= 1.0.5 - Cross-Site Request Forgery to Settings Update	wpeventmanager	WP User Profile Avatar	Medium	4.3	2025-01-16 03:27:23	Deep Dive
CVE-2025-22736	WordPress User Management plugin <= 1.2 - Privilege Escalation vulnerability	Saad Iqbal	User Management	High	8.8	2025-01-15 15:23:35	Deep Dive
CVE-2025-0057	Cross-Site Scripting vulnerability in SAP NetWeaver AS JAVA (User Admin Application)	SAP_SE	SAP NetWeaver AS JAVA (User Admin Application)	Medium	4.8	2025-01-14 00:08:51	Deep Dive
CVE-2025-22594	WordPress Better User Shortcodes Plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability	hccoder	Better User Shortcodes	High	7.1	2025-01-09 15:39:22	Deep Dive
CVE-2024-56272	WordPress Hide Category by User Role for WooCommerce plugin <= 2.1.1 - Broken Access Control vulnerability	ThemeSupport	Hide Category by User Role for WooCommerce	Medium	4.3	2025-01-07 16:46:33	Deep Dive
CVE-2024-12738	User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor <= 3.12.9 - Unauthenticated Stored Cross-Site Scripting	cozmoslabs	User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor	Medium	6.1	2025-01-07 12:43:40	Deep Dive
CVE-2023-45002	WordPress WP User Frontend plugin <= 3.6.8 - Broken Access Control vulnerability	weDevs	WP User Frontend	Medium	4.3	2025-01-02 11:59:47	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List - Page 13