Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 14

Clear Filters
Found 501 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-6813 Login by Auth0 <= 4.6.0 - Reflected Cross-Site Scripting via wle auth0Login by Auth0 Medium 6.1 2024-07-10 07:36:44 Deep Dive
CVE-2024-37502 WordPress Social Login plugin <= 2.6.3 - PHP Object Injection vulnerability wpwebWooCommerce Social Login Medium 5.4 2024-07-09 08:57:03 Deep Dive
CVE-2024-6069 Pie Register - Basic <= 3.8.3.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation genetechproductsPie Register – User Registration, Profiles & Content Restriction High 8.8 2024-07-09 08:33:11 Deep Dive
CVE-2024-6265 UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WordPress <= 1.2.10 - Unauthenticated SQL Injection via 'uwp_sort_by' stiofansislandUsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP Critical 9.8 2024-06-29 04:33:28 Deep Dive
CVE-2024-5191 Branda – White Label WordPress, Custom Login Page Customizer <= 3.4.17 - Authenticated (Author+) Stored Cross-Site Scripting via SVG Upload wpmudevBranda – White Label & Branding, Free Login Page Customizer Medium 6.4 2024-06-21 06:58:19 Deep Dive
CVE-2024-6125 Login with phone number <= 1.7.34 - Insecure Password Reset Mechanism glboyOTP Login With Phone Number, OTP Verification High 8.1 2024-06-19 02:01:20 Deep Dive
CVE-2024-5868 WooCommerce - Social Login <= 2.6.2 - Email Verification due to Insufficient Randomness WPWebWooCommerce - Social Login Medium 6.5 2024-06-15 03:35:11 Deep Dive
CVE-2024-5871 WooCommerce - Social Login <= 2.6.2 - Unauthenticated PHP Object Injection WPWebWooCommerce - Social Login Critical 9.8 2024-06-15 03:35:11 Deep Dive
CVE-2024-2473 WPS Hide Login <= 1.9.15.2 - Login Page Disclosure tabrisrpWPS Hide Login Medium 5.3 2024-06-11 02:01:59 Deep Dive
CVE-2024-35650 WordPress MelaPress Login Security plugin <= 1.3.0 - Remote File Inclusion vulnerability MelapressMelaPress Login Security Medium 4.9 2024-06-10 15:43:25 Deep Dive
CVE-2024-35706 WordPress Heateor Social Login WordPress plugin <= 1.1.32 - Cross Site Scripting (XSS) vulnerability Team HeateorHeateor Social Login High 7.1 2024-06-08 14:10:06 Deep Dive
CVE-2024-35707 WordPress Heateor Social Login WordPress plugin <= 1.1.32 - Cross Site Scripting (XSS) vulnerability Team HeateorHeateor Social Login Medium 6.5 2024-06-08 14:05:14 Deep Dive
CVE-2024-35732 WordPress YITH Custom Login plugin <= 1.7.0 - Cross Site Scripting (XSS) vulnerability YITHEMESYITH Custom Login Medium 5.9 2024-06-08 12:52:23 Deep Dive
CVE-2024-5665 Login/Signup Popup ( Inline Form + Woocommerce ) 2.7.1 - 2.7.2 - Missing Authorization to Arbitrary Options Exposure xootixLogin/Signup Popup ( Inline Form + Woocommerce ) Medium 4.3 2024-06-06 07:37:12 Deep Dive
CVE-2024-5324 XootiX Framework <= Various Plugin Versions - Missing Authorization to Arbitrary Options Update xootixWaitlist Woocommerce ( Back in stock notifier ) High 8.8 2024-06-06 02:02:48 Deep Dive
CVE-2023-49748 WordPress WPS Hide Login plugin <= 1.9.11 - Secret Login Page Location Disclosure on Multisites vulnerability WPServeur, NicolasKulka, wpformationWPS Hide Login Low 3.7 2024-06-04 11:07:01 Deep Dive
CVE-2023-48335 WordPress Hide login page plugin <= 1.1.9 - Secret Login Page Location Disclosure on Multisites vulnerability WebcrafticHide login page Low 3.7 2024-06-04 10:40:18 Deep Dive
CVE-2023-47818 WordPress LWS Hide Login plugin <= 2.1.8 - Secret Login Page Location Disclosure on Multisites vulnerability LWSLWS Hide Login Low 3.7 2024-06-04 10:08:42 Deep Dive
CVE-2024-4552 Social Login Lite For WooCommerce <= 1.6.0 - Authentication Bypass phoeniixxSocial Login Lite For WooCommerce Critical 9.8 2024-06-04 02:00:56 Deep Dive
CVE-2024-4958 User Registration – Custom Registration Form, Login Form, and User Profile WordPress Plugin <= 3.2.0.1 - Missing Authorization to Privilege Escalation wpeverestUser Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder High 7.1 2024-06-01 07:35:57 Deep Dive