Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 5

Clear Filters
Found 120 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-2123 Ultimate Member <= 2.8.3 - Unauthenticated Stored Cross-Site Scripting ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin High 7.2 2024-03-13 09:35:15 Deep Dive
CVE-2024-1720 User Registration – Custom Registration Form, Login Form, and User Profile WordPress Plugin <= 3.1.4 - Unauthenticated Stored Self-Based Cross-Site Scripting wpeverestUser Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder Medium 4.7 2024-03-07 05:32:39 Deep Dive
CVE-2024-1408 ProfilePress <= 4.14.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via [edit-profile-text-box] shortcode properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 6.4 2024-02-20 18:56:34 Deep Dive
CVE-2024-1519 Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.14.4 - Unauthenticated Stored Cross-Site Scripting properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 6.5 2024-02-20 18:56:31 Deep Dive
CVE-2024-1570 ProfilePress <= 4.14.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 6.4 2024-02-20 18:56:30 Deep Dive
CVE-2024-1046 Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.14.3 - Authenticated (Contributor+) Stored Cross-Site Scripting properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 6.4 2024-02-05 21:21:51 Deep Dive
CVE-2023-51509 WordPress RegistrationMagic Plugin <= 5.2.4.1 is vulnerable to Cross Site Scripting (XSS) MetagaussRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login High 7.1 2024-02-01 11:24:54 Deep Dive
CVE-2022-45083 WordPress ProfilePress Plugin <= 4.3.2 is vulnerable to PHP Object Injection ProfilePress Membership TeamPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 6.6 2024-01-19 14:37:19 Deep Dive
CVE-2023-50846 WordPress RegistrationMagic Plugin <= 5.2.4.5 is vulnerable to SQL Injection RegistrationMagicRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login High 7.6 2023-12-28 18:19:26 Deep Dive
CVE-2023-6464 SourceCodester User Registration and Login System add-user.php sql injection SourceCodesterUser Registration and Login System Medium 6.3 2023-12-02 09:00:08 Deep Dive
CVE-2023-6463 SourceCodester User Registration and Login System add-user.php cross site scripting SourceCodesterUser Registration and Login System Low 3.5 2023-12-01 22:31:05 Deep Dive
CVE-2023-6462 SourceCodester User Registration and Login System delete-user.php cross site scripting SourceCodesterUser Registration and Login System Low 3.5 2023-12-01 21:31:04 Deep Dive
CVE-2023-44150 WordPress ProfilePress Plugin <= 4.13.2 is vulnerable to Sensitive Data Exposure ProfilePress Membership TeamPaid Membership Plugin, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content – ProfilePress High 7.5 2023-11-30 14:50:36 Deep Dive
CVE-2023-47645 WordPress RegistrationMagic Plugin <= 5.2.2.6 is vulnerable to Cross Site Request Forgery (CSRF) RegistrationMagicRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login Medium 4.3 2023-11-30 13:34:47 Deep Dive
CVE-2023-46201 WordPress Auto Login New User After Registration Plugin <= 1.9.6 is vulnerable to Cross Site Request Forgery (CSRF) Jeff SherkAuto Login New User After Registration High 7.1 2023-11-13 04:09:16 Deep Dive
CVE-2023-46202 WordPress Auto Login New User After Registration Plugin <= 1.9.6 is vulnerable to Cross Site Request Forgery (CSRF) Jeff SherkAuto Login New User After Registration Medium 4.3 2023-10-24 10:51:02 Deep Dive
CVE-2023-3342 User Registration <= 3.0.2 - Authenticated (Subscriber+) Arbitrary File Upload wpeverestUser Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder Critical 9.9 2023-07-13 02:04:15 Deep Dive
CVE-2023-3343 User Registration <= 3.0.1 - Authenticated (Subscriber+) PHP Object Injection wpeverestUser Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder High 8.8 2023-07-13 02:04:15 Deep Dive
CVE-2023-2548 RegistrationMagic <= 5.2.0.5 - Authenticated (Admin+) Insecure Direct Object Reference to Arbitrary User Password Change metagaussRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login Medium 6.6 2023-05-16 08:40:02 Deep Dive
CVE-2023-2499 RegistrationMagic <= 5.2.1.0 - Authentication Bypass metagaussRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login Critical 9.8 2023-05-16 08:40:01 Deep Dive