| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-34827 | WordPress Translate Multilingual sites – TranslatePress plugin <= 2.7.5 - Cross Site Request Forgery (CSRF) vulnerability | Cozmoslabs, Razvan Mocanu, Madalin Ungureanu, Cristophor Hurduban | TranslatePress | Medium | 4.3 | 2024-05-10 08:18:05 | Deep Dive |
| CVE-2024-32728 | WordPress Paid Membership Subscriptions plugin <= 2.11.0 - Cross Site Request Forgery (CSRF) vulnerability | Cozmoslabs | Paid Member Subscriptions | Medium | 4.3 | 2024-04-24 14:59:23 | Deep Dive |
| CVE-2024-29143 | WordPress Passwordless Login plugin <= 1.1.2 - Cross Site Scripting (XSS) vulnerability | Cozmoslabs, sareiodata | Passwordless Login | Medium | 6.5 | 2024-03-19 13:12:46 | Deep Dive |
| CVE-2023-51522 | WordPress Paid Membership Subscriptions plugin <= 2.10.4 - Cross Site Request Forgery (CSRF) vulnerability | Cozmoslabs | Paid Member Subscriptions | Medium | 4.3 | 2024-03-15 14:21:50 | Deep Dive |
| CVE-2024-22140 | WordPress Profile Builder Pro Plugin <= 3.10.0 is vulnerable to Cross Site Request Forgery (CSRF) | Cozmoslabs | Profile Builder Pro | High | 8.8 | 2024-01-31 13:46:15 | Deep Dive |
| CVE-2024-22141 | WordPress Profile Builder Pro Plugin <= 3.10.0 is vulnerable to Sensitive Data Exposure | Cozmoslabs | Profile Builder Pro | Medium | 6.5 | 2024-01-24 14:50:45 | Deep Dive |
| CVE-2024-22142 | WordPress Profile Builder Pro Plugin <= 3.10.0 is vulnerable to Cross Site Scripting (XSS) | Cozmoslabs | Profile Builder Pro | High | 7.1 | 2024-01-12 23:17:21 | Deep Dive |
| CVE-2023-47669 | WordPress Profile Builder Plugin <= 3.10.3 is vulnerable to Cross Site Request Forgery (CSRF) | Cozmoslabs | User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor | Medium | 5.4 | 2023-11-13 00:55:28 | Deep Dive |
| CVE-2023-25968 | WordPress Client Portal – Private user pages and login Plugin <= 1.1.8 is vulnerable to Cross Site Request Forgery (CSRF) | Cozmoslabs, Madalin Ungureanu, Antohe Cristian | Client Portal – Private user pages and login | Medium | 4.3 | 2023-03-15 10:20:38 | Deep Dive |
| CVE-2021-36915 | WordPress Profile Builder plugin <= 3.6.0 - Cross-Site Request Forgery (CSRF) vulnerability | Cozmoslabs | Profile Builder – User Profile & User Registration Forms (WordPress plugin) | Medium | 4.2 | 2022-10-11 19:34:00 | Deep Dive |
| CVE-2022-0653 | Profile Builder – User Profile & User Registration Forms <= 3.6.1 Reflected Cross-Site Scripting | Cozmoslabs | Profile Builder – User Profile & User Registration Forms | Medium | 6.1 | 2022-02-24 18:27:05 | Deep Dive |