Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 263 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-0700 code-projects Intern Membership Management System check_admin.php sql injection code-projectsIntern Membership Management System High 7.3 2026-01-08 07:02:08 Deep Dive
CVE-2026-0699 code-projects Intern Membership Management System edit_activity.php sql injection code-projectsIntern Membership Management System Medium 4.7 2026-01-08 06:32:06 Deep Dive
CVE-2026-0698 code-projects Intern Membership Management System edit_students.php sql injection code-projectsIntern Membership Management System Medium 4.7 2026-01-08 05:32:05 Deep Dive
CVE-2026-0697 code-projects Intern Membership Management System edit_admin.php sql injection code-projectsIntern Membership Management System Medium 4.7 2026-01-08 04:32:06 Deep Dive
CVE-2025-12648 WP-Members Membership Plugin <= 3.5.4.4 - Unauthenticated Information Exposure via Unprotected Files cbutlerjrWP-Members Membership Plugin Medium 5.3 2026-01-07 02:21:47 Deep Dive
CVE-2025-14047 WP User Frontend <= 4.2.4 - Missing Authorization to Unauthenticated Arbitrary Attachment Deletion wedevsUser Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration Medium 5.3 2026-01-02 01:48:20 Deep Dive
CVE-2025-67909 WordPress Membership For WooCommerce plugin <= 3.0.3 - Insecure Direct Object References (IDOR) vulnerability WP SwingsMembership For WooCommerce High 7.5 2025-12-24 13:10:25 Deep Dive
CVE-2025-14000 Membership Plugin – Restrict Content <= 3.2.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcodes stellarwpMembership Plugin – Restrict Content Medium 6.4 2025-12-23 11:13:49 Deep Dive
CVE-2025-13220 Ultimate Member <= 2.11.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Medium 6.4 2025-12-21 03:20:06 Deep Dive
CVE-2025-12492 Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin <= 2.11.0 - Unauthenticated Sensitive Information Exposure ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Medium 5.3 2025-12-20 08:22:10 Deep Dive
CVE-2025-14081 Ultimate Member <= 2.11.0 - Authenticated (Subscriber+) Profile Privacy Setting Bypass ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Medium 4.3 2025-12-17 18:21:36 Deep Dive
CVE-2025-13217 Ultimate Member <= 2.11.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'value' ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Medium 6.4 2025-12-17 18:21:35 Deep Dive
CVE-2025-13367 User Registration & Membership – Custom Registration Form Builder, Custom Login Form, User Profile, Content Restriction & Membership Plugin <= 4.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes wpeverestUser Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder Medium 6.4 2025-12-15 14:25:10 Deep Dive
CVE-2025-13320 WP User Manager <= 2.9.12 - Authenticated (Subscriber+) Arbitrary File Deletion via 'current_user_avatar' Parameter wpusermanagerWP User Manager – User Profile Builder & Membership Medium 6.8 2025-12-12 03:20:51 Deep Dive
CVE-2025-13613 Elated Membership <= 1.2 - Authentication Bypass via Social Login Elated ThemesElated Membership Critical 9.8 2025-12-10 01:51:52 Deep Dive
CVE-2025-13642 ProfilePress <= 4.16.7 - Authenticated (Subscriber+) Arbitrary Shortcode Execution properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 5.4 2025-12-09 15:23:48 Deep Dive
CVE-2025-14205 code-projects Chamber of Commerce Membership Management System Your Info membership_profile.php cross site scripting code-projectsChamber of Commerce Membership Management System Low 2.4 2025-12-07 23:32:08 Deep Dive
CVE-2025-13539 FindAll Membership <= 1.0.4 - Authentication Bypass via Social Login Elated ThemesFindAll Membership Critical 9.8 2025-11-27 04:36:46 Deep Dive
CVE-2025-13540 Tiare Membership <= 1.2 - Unauthenticated Privilege Escalation Qode InteractiveTiare Membership Critical 9.8 2025-11-27 04:36:45 Deep Dive
CVE-2025-12018 MembershipWorks <= 6.14 - Authenticated (Admin+) Stored Cross-Site Scripting sourcefoundMembershipWorks – Membership, Events & Directory Medium 4.4 2025-11-12 07:27:42 Deep Dive