Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 30

Clear Filters
Found 621 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2021-24672 One User Avatar < 2.3.7 - Contributor+ Stored Cross-Site Scripting UnknownOne User Avatar | User Profile Picture 中危 -2021-10-18 13:45:53 Deep Dive
CVE-2021-24654 User Registration < 2.0.2 - Low Privilege Stored Cross-Site Scripting UnknownUser Registration – Custom Registration Form, Login And User Profile For WordPress 中危 -2021-10-04 11:20:17 Deep Dive
CVE-2021-38325 User Activation Email <= 1.3.0 Reflected Cross-Site Scripting User Activation EmailUser Activation Email Medium 6.1 2021-09-09 18:10:33 Deep Dive
CVE-2021-24527 Profile Builder < 3.4.9 - Admin Access via Password Reset UnknownUser Registration & User Profile – Profile Builder 超危 -2021-08-16 10:48:27 Deep Dive
CVE-2021-24522 ProfilePress < 3.1.11 - Unauthenticated Cross-Site Scripting (XSS) in tabbed login/register widget UnknownUser Registration, User Profile, Login & Membership – ProfilePress (Formerly WP User Avatar) 中危 -2021-08-09 10:04:15 Deep Dive
CVE-2021-29757 IBM QRadar User Behavior Analytics 跨站请求伪造漏洞 IBMQRadar User Behavior Analytics 高危 -2021-08-02 16:00:13 Deep Dive
CVE-2021-24473 User Profile Picture < 2.6.0 - Arbitrary User Picture Change/Deletion via IDOR UnknownUser Profile Picture 中危 -2021-08-02 10:32:14 Deep Dive
CVE-2021-24450 ProfilePress < 3.1.8 - Authenticated Stored XSS UnknownUser Registration, User Profiles, Login & Membership – ProfilePress (Formerly WP User Avatar) 中危 -2021-08-02 10:32:00 Deep Dive
CVE-2021-24448 Profile Builder < 3.4.8 - Authenticated Stored XSS UnknownUser Registration & User Profile – Profile Builder 中危 -2021-08-02 10:31:59 Deep Dive
CVE-2021-24443 Youzify < 1.0.7 - Stored Cross-Site Scripting via Biography UnknownYouzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress 中危 -2021-08-02 10:31:57 Deep Dive
CVE-2021-20560 IBM Sterling Connect 安全漏洞 IBMSterling Connect:Direct Browser User Interface 中危 -2021-07-26 12:10:39 Deep Dive
CVE-2021-23401 Open Redirect -Flask-User Medium 5.4 2021-07-05 10:25:12 Deep Dive
CVE-2021-24306 Ultimate Member < 2.1.20 - Authenticated Reflected Cross-Site Scripting (XSS) Ultimate MemberUltimate Member – User Profile, User Registration, Login & Membership Plugin 中危 -2021-05-24 10:58:05 Deep Dive
CVE-2021-24195 Login as User or Customer (User Switching) < 1.9 - Arbitrary Plugin Installation/Activation via Low Privilege User wp-buyLogin as User or Customer (User Switching) 高危 -2021-05-14 11:38:16 Deep Dive
CVE-2021-24239 Pie Register < 3.7.0.1 - Reflected Cross-Site Scripting (XSS) UnknownPie Register – User Registration Forms. Invitation based registrations, Custom Login, Payments 中危 -2021-04-22 21:00:51 Deep Dive
CVE-2021-24170 User Profile Picture < 2.5.0 - Sensitive Information Disclosure UnknownUser Profile Picture 高危 -2021-04-05 18:27:44 Deep Dive
CVE-2021-23335 LDAP Injection -is-user-valid High 7.5 2021-02-11 11:25:12 Deep Dive
CVE-2021-2017 Oracle E-Business Suite 组件授权问题漏洞 Oracle CorporationUser Management Medium 4.3 2021-01-20 14:50:01 Deep Dive
CVE-2020-26837 SAP Solution Manager 路径遍历漏洞 SAP SESAP Solution Manager (User Experience Monitoring) 超危 -2020-12-09 16:31:24 Deep Dive
CVE-2020-26830 SAP Solution Manager 安全漏洞 SAP SESAP Solution Manager (User Experience Monitoring) 高危 -2020-12-09 16:29:34 Deep Dive