| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-6467 | BookingPress Appointment Booking <= 1.1.5 - Authenticated (Subscriber+) Arbitrary File Read to Arbitrary File Creation | reputeinfosystems | Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress | High | 8.8 | 2024-07-17 06:45:12 | Deep Dive |
| CVE-2024-6660 | BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin <= 1.1.5 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update and Arbitrary File Upload | reputeinfosystems | Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress | High | 8.8 | 2024-07-17 06:45:10 | Deep Dive |
| CVE-2024-32703 | WordPress ARForms plugin <= 6.4 - Subscriber+ Arbitrary File Deletion vulnerability | reputeinfosystems | ARForms | High | 7.7 | 2024-06-09 17:17:53 | Deep Dive |
| CVE-2024-32704 | WordPress ARForms plugin <= 6.4 - Subscriber+ Arbitrary WordPress Options Removal vulnerability | reputeinfosystems | ARForms | High | 7.1 | 2024-06-09 17:11:26 | Deep Dive |
| CVE-2024-32705 | WordPress ARForms plugin <= 6.4 - Subscriber+ Arbitrary Plugin Activation/Deactivation Vulnerability | reputeinfosystems | ARForms | High | 7.1 | 2024-06-09 17:10:07 | Deep Dive |
| CVE-2024-4133 | ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup <= 4.0.30 - Open Redirect | reputeinfosystems | ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup | Medium | 6.1 | 2024-05-02 16:52:18 | Deep Dive |
| CVE-2024-1945 | ARForms Form Builder <= 1.6.4 - Missing Authorization to Authenticated(Subscriber+) Arbitrary Option Deletion | reputeinfosystems | Contact Form, Survey, Quiz & Popup Form Builder – ARForms | High | 7.1 | 2024-05-02 16:51:41 | Deep Dive |
| CVE-2024-32702 | WordPress ARForms plugin <= 6.4 - Reflected Cross Site Scripting (XSS) vulnerability | reputeinfosystems | ARForms | High | 7.1 | 2024-04-24 10:13:23 | Deep Dive |
| CVE-2024-32706 | WordPress ARForms plugin <= 6.4 - Subscriber+ SQL Injection vulnerability | reputeinfosystems | ARForms | High | 8.5 | 2024-04-24 08:12:04 | Deep Dive |
| CVE-2024-3022 | BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin <= 1.0.87 - Authenticated (Admin+) Arbitrary File Upload | reputeinfosystems | Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress | High | 7.2 | 2024-04-04 01:56:45 | Deep Dive |
| CVE-2024-0969 | ARMember <= 4.0.24 - Improper Access Control to Sensitive Information Exposure via REST API | reputeinfosystems | ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup | Medium | 5.3 | 2024-02-05 21:22:05 | Deep Dive |
| CVE-2023-6828 | ARForms <= 1.5.8 - Unauthenticated Stored Cross-Site Scripting via arf_http_referrer_url | reputeinfosystems | Contact Form, Survey, Quiz & Popup Form Builder – ARForms | High | 7.2 | 2024-01-11 08:32:38 | Deep Dive |
| CVE-2023-6219 | BookingPress <= 1.0.76 - Authenticated (Administrator+) Arbitrary File Upload | reputeinfosystems | Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress | High | 7.2 | 2023-11-28 02:37:20 | Deep Dive |
| CVE-2023-3996 | ARMember Lite - Membership Plugin <= 4.0.16 - Authenticated (Administrator+) Stored Cross-Site Scripting | reputeinfosystems | ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup | Medium | 4.4 | 2023-10-20 07:29:30 | Deep Dive |
| CVE-2023-3011 | ARMember <= 4.0.5 - Cross-Site Request Forgery | reputeinfosystems | ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup | Medium | 6.5 | 2023-07-12 04:38:44 | Deep Dive |
| CVE-2022-42888 | WordPress ARMember Plugin <= 5.5.1 is vulnerable to Privilege Escalation | Reputeinfosystems | ARMember | Critical | 9.8 | 2022-12-06 20:46:31 | Deep Dive |