Vulnerability List - Page 16

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2024-31424	WordPress Login with Phone Number plugin <= 1.6.93 - Cross Site Request Forgery (CSRF) vulnerability	Hamid Alinia	Login with phone number	High	8.8	2024-04-15 10:07:10	Deep Dive
CVE-2024-31923	WordPress Feather Login Page plugin <= 1.1.5 - Cross Site Request Forgery (CSRF) vulnerability	PluginOps	Feather Login Page	Medium	4.3	2024-04-15 09:25:05	Deep Dive
CVE-2024-31086	WordPress Change default login logo,url and title plugin <= 2.0 - CSRF to XSS vulnerability	Venugopal	Change default login logo,url and title	High	7.1	2024-04-15 07:46:20	Deep Dive
CVE-2024-2836	Super Socializer < 7.13.64 - Editor+ Stored XSS	Unknown	Social Share, Social Login and Social Comments Plugin	-	-	2024-04-15 05:00:06	Deep Dive
CVE-2024-31927	WordPress WP Login and Logout Redirect plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability	Aminur Islam	WP Login and Logout Redirect	Medium	5.9	2024-04-11 12:38:28	Deep Dive
CVE-2024-3210	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.15.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'reg-single-checkbox'	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.4	2024-04-10 05:32:23	Deep Dive
CVE-2024-1991	RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login <= 5.3.0.0 - Authenticated (Subscriber+) Privilege Escalation	metagauss	RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login	High	8.8	2024-04-09 18:58:59	Deep Dive
CVE-2024-1990	RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login <= 5.3.1.0 - Authenticated (Contributor+) SQL Injection via Shortcode	metagauss	RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login	High	8.8	2024-04-09 18:58:52	Deep Dive
CVE-2024-2423	UsersWP <= 1.2.6 - Authenticated(Contributor+) Stored Cross-Site Scripting via Shortcode	stiofansisland	UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP	Medium	6.4	2024-04-09 18:58:42	Deep Dive
CVE-2024-31344	WordPress Easy Login Styler plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability	Phpbits Creative Studio	Easy Login Styler – White Label Admin Login Page for WordPress	Medium	5.9	2024-04-07 17:40:52	Deep Dive
CVE-2024-29143	WordPress Passwordless Login plugin <= 1.1.2 - Cross Site Scripting (XSS) vulnerability	Cozmoslabs, sareiodata	Passwordless Login	Medium	6.5	2024-03-19 13:12:46	Deep Dive
CVE-2024-1806	ProfilePress <= 4.15.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via profilepress-edit-profile Shortcode	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.4	2024-03-13 15:27:17	Deep Dive
CVE-2024-1409	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.15.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via [reg-select-role] Shortcode	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.4	2024-03-13 15:26:49	Deep Dive
CVE-2024-1763	Wp Social Login and Register Social Counter <= 3.0.0 - Missing Authorization to Unauthenticated Social Login/Share Status Update	roxnor	Wp Social Login and Register Social Counter	Medium	6.5	2024-03-13 15:26:49	Deep Dive
CVE-2024-1535	ProfilePress <= 4.15.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.4	2024-03-13 15:26:44	Deep Dive
CVE-2024-1071	WordPress Plugin Ultimate Member 安全漏洞	ultimatemember	Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin	Critical	9.8	2024-03-13 15:26:32	Deep Dive
CVE-2024-2123	Ultimate Member <= 2.8.3 - Unauthenticated Stored Cross-Site Scripting	ultimatemember	Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin	High	7.2	2024-03-13 09:35:15	Deep Dive
CVE-2023-7247	Login as User or Customer <= 3.8 - Admin Account Takeover	Unknown	Login as User or Customer	-	-	2024-03-11 17:56:06	Deep Dive
CVE-2024-2265	keerti1924 PHP-MYSQL-User-Login-System login.sql inclusion of sensitive information in source code	keerti1924	PHP-MYSQL-User-Login-System	Medium	5.3	2024-03-07 21:31:05	Deep Dive
CVE-2024-2264	keerti1924 PHP-MYSQL-User-Login-System login.php sql injection	keerti1924	PHP-MYSQL-User-Login-System	High	7.3	2024-03-07 21:00:07	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List - Page 16