Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 3

Clear Filters
Found 120 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-4934 PHPGurukul User Registration & Login and User Management System edit-profile.php sql injection PHPGurukulUser Registration & Login and User Management System High 7.3 2025-05-19 13:31:06 Deep Dive
CVE-2025-3281 User Registration & Membership – Custom Registration Form, Login Form, and User Profile <= 4.2.1 - Insecure Direct Object Reference to Unauthenticated Limited User Deletion wpeverestUser Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder Medium 5.3 2025-05-06 07:24:22 Deep Dive
CVE-2025-3284 User Registration & Membership PRO – Custom Registration Form, Login Form, and User Profile <= 5.1.3 - Cross-Site Request Forgery to User Deletion WPEverestUser Registration PRO – Custom Registration Form, Login Form, and User Profile WordPress Plugin Medium 4.3 2025-04-19 02:22:33 Deep Dive
CVE-2025-3282 User Registration & Membership – Custom Registration Form, Login Form, and User Profile <= 4.1.3 - Insecure Direct Object Reference to Unauthenticated Membership Modification wpeverestUser Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder Medium 5.3 2025-04-12 06:37:18 Deep Dive
CVE-2025-3292 User Registration & Membership – Custom Registration Form, Login Form, and User Profile <= 4.1.3 - Insecure Direct Object Reference to Authenticated (Subscriber+) User Password Update wpeverestUser Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder Medium 4.3 2025-04-12 06:37:17 Deep Dive
CVE-2025-2836 RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login <= 6.0.4.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting metagaussRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login Medium 6.4 2025-04-04 05:22:45 Deep Dive
CVE-2025-2050 PHPGurukul User Registration & Login and User Management System login.php sql injection PHPGurukulUser Registration & Login and User Management System High 7.3 2025-03-06 23:31:06 Deep Dive
CVE-2025-1702 Ultimate Member <= 2.10.0 - Unauthenticated SQL Injection via search Parameter ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin High 7.5 2025-03-05 11:22:09 Deep Dive
CVE-2025-1511 User Registration & Membership – Custom Registration Form, Login Form, and User Profile <= 4.0.4 - Reflected Cross-Site Scripting wpeverestUser Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder Medium 6.1 2025-02-28 05:23:14 Deep Dive
CVE-2024-12276 Ultimate Member <= 2.9.2 - Authenticated SQL Injection ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Medium 5.3 2025-02-21 09:21:06 Deep Dive
CVE-2024-13818 Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction <= 3.8.4 - Sensitive Information Exposure via Log Files genetechproductsPie Register – User Registration, Profiles & Content Restriction Medium 5.3 2025-02-21 03:21:21 Deep Dive
CVE-2024-13120 ProfilePress < 4.15.20 - Admin+ Stored XSS UnknownPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content 中危 -2025-02-13 06:00:12 Deep Dive
CVE-2024-13121 Paid Membership Plugin < 4.15.20 - Admin+ Stored XSS UnknownPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content 中危 -2025-02-13 06:00:12 Deep Dive
CVE-2024-13119 ProfilePress < 4.15.20 - Admin+ Stored XSS UnknownPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content 中危 -2025-02-13 06:00:06 Deep Dive
CVE-2025-0308 Ultimate Member <= 2.9.1 - Unauthenticated SQL Injection ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin High 7.5 2025-01-18 05:33:50 Deep Dive
CVE-2025-0318 Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin <= 2.9.1 - Information Exposure ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Medium 5.3 2025-01-18 05:33:49 Deep Dive
CVE-2024-10518 ProfilePress < 4.15.15 - Admin+ Stored XSS UnknownPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content 中危 -2024-12-12 06:00:18 Deep Dive
CVE-2024-10517 ProfilePress < 4.15.15 - Admin+ Stored XSS UnknownPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content 中危 -2024-12-12 06:00:17 Deep Dive
CVE-2024-11083 ProfilePress <= 4.15.18 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 5.3 2024-11-27 05:31:54 Deep Dive
CVE-2024-11818 PHPGurukul User Registration & Login and User Management System signup.php sql injection PHPGurukulUser Registration & Login and User Management System High 7.3 2024-11-26 23:31:05 Deep Dive