Vulnerability List - Page 17

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2024-0203	WordPress plugins Digits 安全漏洞	UnitedOver	Digits: WordPress Mobile Number Signup and Login	High	8.8	2024-03-07 19:33:00	Deep Dive
CVE-2024-1720	User Registration – Custom Registration Form, Login Form, and User Profile WordPress Plugin <= 3.1.4 - Unauthenticated Stored Self-Based Cross-Site Scripting	wpeverest	User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder	Medium	4.7	2024-03-07 05:32:39	Deep Dive
CVE-2024-1775	Nextend Social Login and Register <= 3.1.12 - Reflected Self-Based Cross-Site Scripting via error_description	nextendweb	Nextend Social Login and Register	Medium	5.4	2024-03-02 07:35:48	Deep Dive
CVE-2024-1861	Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan <= 4.52 - Missing Authorization to Authenticated (Subscriber+) Table Truncation	sminozzi	Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan	Medium	4.3	2024-02-28 09:33:35	Deep Dive
CVE-2024-1860	Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan <= 4.51 - Missing Authorization to Unauthenticated IP Address Whitelist	sminozzi	Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan	Medium	6.5	2024-02-28 09:33:34	Deep Dive
CVE-2024-1702	keerti1924 PHP-MYSQL-User-Login-System edit.php sql injection	keerti1924	PHP-MYSQL-User-Login-System	Medium	6.3	2024-02-21 16:31:05	Deep Dive
CVE-2024-1701	keerti1924 PHP-MYSQL-User-Login-System edit.php access control	keerti1924	PHP-MYSQL-User-Login-System	Medium	5.3	2024-02-21 15:31:06	Deep Dive
CVE-2024-1700	keerti1924 PHP-MYSQL-User-Login-System signup.php cross site scripting	keerti1924	PHP-MYSQL-User-Login-System	Medium	4.3	2024-02-21 15:31:05	Deep Dive
CVE-2024-1408	ProfilePress <= 4.14.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via [edit-profile-text-box] shortcode	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.4	2024-02-20 18:56:34	Deep Dive
CVE-2024-1519	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.14.4 - Unauthenticated Stored Cross-Site Scripting	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.5	2024-02-20 18:56:31	Deep Dive
CVE-2024-1570	ProfilePress <= 4.14.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.4	2024-02-20 18:56:30	Deep Dive
CVE-2024-1340	Login Lockdown – Protect Login Form <= 2.08 - Missing Authorization	webfactory	Login Lockdown & Protection	Medium	5.4	2024-02-20 18:56:26	Deep Dive
CVE-2024-1470	Elevation of Privilege attack on NetIQ Client login extension	OpenText	NetIQ Client Login Extension	High	7.1	2024-02-20 16:10:04	Deep Dive
CVE-2024-24712	WordPress Heateor Social Login Plugin <= 1.1.30 is vulnerable to Cross Site Scripting (XSS)	Team Heateor	Heateor Social Login WordPress	Medium	6.5	2024-02-10 08:05:30	Deep Dive
CVE-2024-1046	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.14.3 - Authenticated (Contributor+) Stored Cross-Site Scripting	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.4	2024-02-05 21:21:51	Deep Dive
CVE-2023-51509	WordPress RegistrationMagic Plugin <= 5.2.4.1 is vulnerable to Cross Site Scripting (XSS)	Metagauss	RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login	High	7.1	2024-02-01 11:24:54	Deep Dive
CVE-2024-1111	SourceCodester QR Code Login System add-user.php cross site scripting	SourceCodester	QR Code Login System	Medium	4.3	2024-01-31 19:00:07	Deep Dive
CVE-2022-47160	WordPress Wp Social Plugin <= 1.9.0 is vulnerable to Sensitive Data Exposure	Wpmet	Wp Social Login and Register Social Counter	Medium	6.5	2024-01-19 14:50:02	Deep Dive
CVE-2022-45083	WordPress ProfilePress Plugin <= 4.3.2 is vulnerable to PHP Object Injection	ProfilePress Membership Team	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.6	2024-01-19 14:37:19	Deep Dive
CVE-2022-40700	Server Side Request Forgery (SSRF) vulnerability affecting multiple WordPress plugins	Montonio	Montonio for WooCommerce	High	8.2	2024-01-19 14:30:11	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List - Page 17