Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Associated Vulnerability
Clear Filters
Found 45 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-2314 User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor <= 3.13.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode cozmoslabsUser Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor Medium 6.4 2025-04-16 01:45:02 Deep Dive
CVE-2024-12738 User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor <= 3.12.9 - Unauthenticated Stored Cross-Site Scripting cozmoslabsUser Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor Medium 6.1 2025-01-07 12:43:40 Deep Dive
CVE-2024-10537 WP User Manager – User Profile Builder & Membership <= 2.9.11 - Missing Authorization to Authenticated (Subscriber+) User Meta Key Enumeration wpusermanagerWP User Manager – User Profile Builder & Membership Medium 4.3 2024-11-23 03:25:51 Deep Dive
CVE-2024-10216 WP User Manager – User Profile Builder & Membership <= 2.9.11 - Missing Authorization to Carbon Fields Custom Sidebar Addition/Removal wpusermanagerWP User Manager – User Profile Builder & Membership Medium 4.3 2024-11-23 03:25:48 Deep Dive
CVE-2024-9262 User Meta – User Profile Builder and User management plugin <= 3.1.1 - Insecure Direct Object Reference to Sensitive Information Exposure khaledsaikatUser Meta – User Profile Builder and User management plugin Medium 6.5 2024-11-09 02:03:03 Deep Dive
CVE-2024-6695 profile-builder <= 3.11.8 - Unauthenticated Privilege Escalation UnknownUser Profile Builder--2024-07-31 06:00:05 Deep Dive
CVE-2024-6366 User Profile Builder < 3.11.8 - Unauthenticated Media Upload UnknownUser Profile Builder--2024-07-29 06:00:08 Deep Dive
CVE-2024-31341 WordPress User Profile Builder plugin <= 3.11.2 - Bypass Vulnerability vulnerability CozmoslabsProfile Builder Medium 5.3 2024-05-17 08:19:23 Deep Dive
CVE-2024-0324 User Profile Builder <= 3.10.8 - Missing Authorization to Plugin Settings Change via wppb_two_factor_authentication_settings_update cozmoslabsUser Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor High 8.2 2024-02-05 21:21:37 Deep Dive
CVE-2024-22140 WordPress Profile Builder Pro Plugin <= 3.10.0 is vulnerable to Cross Site Request Forgery (CSRF) CozmoslabsProfile Builder Pro High 8.8 2024-01-31 13:46:15 Deep Dive
CVE-2024-22141 WordPress Profile Builder Pro Plugin <= 3.10.0 is vulnerable to Sensitive Data Exposure CozmoslabsProfile Builder Pro Medium 6.5 2024-01-24 14:50:45 Deep Dive
CVE-2024-22142 WordPress Profile Builder Pro Plugin <= 3.10.0 is vulnerable to Cross Site Scripting (XSS) CozmoslabsProfile Builder Pro High 7.1 2024-01-12 23:17:21 Deep Dive
CVE-2023-6504 Profile Builder <= 3.10.7 - Insecure Direct Object Reference to Sensitive Information Exposure via user_meta Shortcode cozmoslabsUser Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor Medium 4.3 2024-01-11 08:33:09 Deep Dive
CVE-2023-47669 WordPress Profile Builder Plugin <= 3.10.3 is vulnerable to Cross Site Request Forgery (CSRF) CozmoslabsUser Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor Medium 5.4 2023-11-13 00:55:28 Deep Dive
CVE-2023-4059 Profile Builder < 3.9.8 - Unauthenticated Plugin's Pages Creation UnknownProfile Builder 中危 -2023-09-04 11:26:55 Deep Dive
CVE-2023-2297 Profile Builder – User Profile & User Registration Forms <= 3.9.0 - Insecure Password Reset Mechanism cozmoslabsUser Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor Critical 9.8 2023-04-26 23:30:18 Deep Dive
CVE-2023-0814 Profile Builder – User Profile & User Registration Forms <= 3.9.0 - Sensitive Information Disclosure via Shortcode cozmoslabsUser Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor Medium 6.5 2023-02-14 01:13:13 Deep Dive
CVE-2021-36915 WordPress Profile Builder plugin <= 3.6.0 - Cross-Site Request Forgery (CSRF) vulnerability CozmoslabsProfile Builder – User Profile & User Registration Forms (WordPress plugin) Medium 4.2 2022-10-11 19:34:00 Deep Dive
CVE-2021-24655 WP User Manager < 2.6.3 - Arbitrary User Password Reset to Account Compromise UnknownWP User Manager – User Profile Builder & Membership 高危 -2022-07-17 10:35:28 Deep Dive
CVE-2022-0779 User Meta < 2.4.4 - Subscriber+ Local File Enumeration via Path Traversal UnknownUser Meta – User Profile Builder and User management plugin 中危 -2022-06-06 08:50:49 Deep Dive