Vulnerability List

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2025-11835	Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction <= 2.16.4 - Missing Authorization to Unauthenticated Arbitrary Member Subscription Auto Renewal	cozmoslabs	Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction	Medium	5.3	2025-11-05 03:27:58	Deep Dive
CVE-2025-10848	Campcodes Society Membership Information System check_student.php sql injection	Campcodes	Society Membership Information System	Medium	6.3	2025-09-23 07:32:09	Deep Dive
CVE-2025-58000	WordPress Memberful plugin <= 1.75.0 - Broken Access Control vulnerability	memberful	Memberful - Membership Plugin	Medium	5.3	2025-09-22 18:24:16	Deep Dive
CVE-2025-9489	WP-Members Membership Plugin <= 3.5.4.2 - Authenticated (Subscriber+) Arbitrary Shortcode Execution via Profile Names	cbutlerjr	WP-Members Membership Plugin	Medium	5.0	2025-09-09 04:25:56	Deep Dive
CVE-2025-9085	User Registration & Membership <= 4.3.0 - Authenticated (Admin+) SQL Injection	wpeverest	User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder	Medium	4.9	2025-09-06 02:24:18	Deep Dive
CVE-2025-48102	WordPress GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership plugin <= 1.6.6 - Cross Site Scripting (XSS) vulnerability	gourl	GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership	Medium	5.9	2025-09-05 16:15:44	Deep Dive
CVE-2025-8878	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.16.4 - Unauthenticated Arbitrary Shortcode Execution	properfraction	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	Medium	6.5	2025-08-16 11:11:24	Deep Dive
CVE-2025-54717	WordPress WP Membership Plugin <= 1.6.3 - Settings Change Vulnerability	e-plugins	WP Membership	Medium	5.4	2025-08-14 18:21:46	Deep Dive
CVE-2025-54692	WordPress Membership For WooCommerce Plugin <= 2.9.0 - Broken Access Control Vulnerability	WP Swings	Membership For WooCommerce	High	7.5	2025-08-14 10:34:51	Deep Dive
CVE-2025-8495	code-projects Intern Membership Management System edit_admin_query.php sql injection	code-projects	Intern Membership Management System	High	7.3	2025-08-03 01:32:10	Deep Dive
CVE-2025-8494	code-projects Intern Membership Management System delete_student.php sql injection	code-projects	Intern Membership Management System	High	7.3	2025-08-02 23:32:09	Deep Dive
CVE-2025-8493	code-projects Intern Membership Management System edit_student_query.php sql injection	code-projects	Intern Membership Management System	High	7.3	2025-08-02 22:32:08	Deep Dive
CVE-2025-8340	code-projects Intern Membership Management System Error Message fill_details.php cross site scripting	code-projects	Intern Membership Management System	Medium	4.3	2025-07-31 00:32:06	Deep Dive
CVE-2025-8339	code-projects Intern Membership Management System student_login.php sql injection	code-projects	Intern Membership Management System	High	7.3	2025-07-31 00:02:06	Deep Dive
CVE-2025-7495	WP-Members <= 3.5.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting	cbutlerjr	WP-Members Membership Plugin	Medium	6.4	2025-07-22 04:25:07	Deep Dive
CVE-2025-6831	User Registration <= 4.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via urcr_restrict Shortcode	wpeverest	User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder	Medium	6.4	2025-07-22 01:44:28	Deep Dive
CVE-2025-49265	WordPress Membership For WooCommerce plugin <= 2.8.1 - Broken Access Control Vulnerability	WP Swings	Membership For WooCommerce	High	7.5	2025-06-09 15:53:53	Deep Dive
CVE-2025-49333	WordPress Simple Membership plugin <= 4.6.3 - Cross Site Scripting (XSS) Vulnerability	wp.insider	Simple Membership	Medium	5.9	2025-06-06 12:53:58	Deep Dive
CVE-2025-4610	WP-Members <= 3.5.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpmem_user_memberships Shortcode	cbutlerjr	WP-Members Membership Plugin	Medium	6.4	2025-05-17 09:22:54	Deep Dive
CVE-2025-3281	User Registration & Membership – Custom Registration Form, Login Form, and User Profile <= 4.2.1 - Insecure Direct Object Reference to Unauthenticated Limited User Deletion	wpeverest	User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder	Medium	5.3	2025-05-06 07:24:22	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List