Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 21

Clear Filters
Found 501 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-2548 RegistrationMagic <= 5.2.0.5 - Authenticated (Admin+) Insecure Direct Object Reference to Arbitrary User Password Change metagaussRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login Medium 6.6 2023-05-16 08:40:02 Deep Dive
CVE-2023-2499 RegistrationMagic <= 5.2.1.0 - Authentication Bypass metagaussRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login Critical 9.8 2023-05-16 08:40:01 Deep Dive
CVE-2022-46861 WordPress Login Page Styler Plugin <= 6.2 is vulnerable to Cross Site Scripting (XSS) Zia ImtiazCustom Login Page Styler for WordPress Medium 5.9 2023-05-10 09:30:24 Deep Dive
CVE-2023-0522 Enable/Disable Auto Login when Register <= 1.1.0 - Settings Update via CSRF UnknownEnable/Disable Auto Login when Register 中危 -2023-05-08 13:58:08 Deep Dive
CVE-2023-0544 WP Login Box <= 2.0.2 - Admin+ Stored XSS UnknownWP Login Box 中危 -2023-05-08 13:58:06 Deep Dive
CVE-2016-15031 PHP-Login POST Parameter class.loginscript.php checkLogin sql injection -PHP-Login High 7.3 2023-05-06 00:31:04 Deep Dive
CVE-2023-26012 WordPress Custom Login Page Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS) Denzel Chia | Phire DesignCustom Login Page Medium 5.9 2023-05-04 13:14:07 Deep Dive
CVE-2023-1861 Limit Login Attempts < 1.7.2 - Subscriber+ Stored XSS UnknownLimit Login Attempts 中危 -2023-05-02 07:04:50 Deep Dive
CVE-2023-23710 WordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin <= 7.5.14 is vulnerable to Cross Site Scripting (XSS) miniOrangeWordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Medium 5.9 2023-04-25 19:41:40 Deep Dive
CVE-2023-27425 WordPress Electric Studio Client Login Plugin <= 0.8.1 is vulnerable to Cross Site Scripting (XSS) James Irving-SwiftElectric Studio Client Login Medium 5.9 2023-04-23 10:47:38 Deep Dive
CVE-2023-2027 ZM Ajax Login & Register <= 2.0.2 - Authentication Bypass zanematthewZM Ajax Login & Register Critical 9.8 2023-04-15 07:42:24 Deep Dive
CVE-2023-1912 Limit Login Attempts <= 1.7.1 - Unauthenticated Stored Cross-Site Scripting automatticLimit Login Attempts High 7.2 2023-04-06 14:37:58 Deep Dive
CVE-2022-47444 WordPress ProfilePress Plugin <= 4.4.1 is vulnerable to Cross Site Scripting (XSS) ProfilePress Membership TeamPaid Membership Plugin, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content – ProfilePress High 7.1 2023-03-29 12:35:45 Deep Dive
CVE-2022-38063 WordPress Social Login WP Plugin <= 5.0.0.0 is vulnerable to Cross Site Request Forgery (CSRF) Social Login WPSocial Login WP Medium 5.4 2023-03-16 08:39:49 Deep Dive
CVE-2023-25968 WordPress Client Portal – Private user pages and login Plugin <= 1.1.8 is vulnerable to Cross Site Request Forgery (CSRF) Cozmoslabs, Madalin Ungureanu, Antohe CristianClient Portal – Private user pages and login Medium 4.3 2023-03-15 10:20:38 Deep Dive
CVE-2022-4622 Login Logout Menu <= 1.3.3 - Contributor+ Stored XSS in Shortcode UnknownLogin Logout Menu 中危 -2023-02-21 08:50:48 Deep Dive
CVE-2022-4838 Clean Login < 1.13.7 - Contributor+ Stored XSS via Shortcode UnknownClean Login 中危 -2023-02-06 19:59:20 Deep Dive
CVE-2022-4305 Login as User or Customer < 3.3 - Unauthenticated Privilege Escalation to Admin UnknownLogin as User or Customer 超危 -2023-01-23 14:31:57 Deep Dive
CVE-2022-4303 WP Limit Login Attempts <= 2.6.4 - IP Spoofing UnknownWP Limit Login Attempts 高危 -2023-01-23 14:31:50 Deep Dive
CVE-2022-4625 Login Logout Menu < 1.4.0 - Contributor+ Stored XSS in Shortcode UnknownLogin Logout Menu 中危 -2023-01-23 14:31:23 Deep Dive