Vulnerability List

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2025-8156	PHPGurukul User Registration & Login and User Management lastsevendays-reg-users.php sql injection	PHPGurukul	User Registration & Login and User Management	Medium	6.3	2025-07-25 12:32:07	Deep Dive
CVE-2025-7692	Orion Login with SMS <= 1.0.5 - Authentication Bypass via Weak OTP	gsayed786	Orion Login with SMS	High	8.1	2025-07-22 09:22:43	Deep Dive
CVE-2025-6831	User Registration <= 4.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via urcr_restrict Shortcode	wpeverest	User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder	Medium	6.4	2025-07-22 01:44:28	Deep Dive
CVE-2025-7393	Mail Login - Critical - Access bypass - SA-CONTRIB-2025-088	Drupal	Mail Login	中危	-	2025-07-21 16:35:46	Deep Dive
CVE-2025-7543	PHPGurukul User Registration & Login and User Management System manage-users.php sql injection	PHPGurukul	User Registration & Login and User Management System	Medium	6.3	2025-07-13 21:14:07	Deep Dive
CVE-2025-7542	PHPGurukul User Registration & Login and User Management System user-profile.php sql injection	PHPGurukul	User Registration & Login and User Management System	High	7.3	2025-07-13 21:02:07	Deep Dive
CVE-2025-6786	DocCheck Login <= 1.1.5 - Unauthorized Post Access	antwerpes	DocCheck Login	Medium	5.3	2025-07-04 01:43:59	Deep Dive
CVE-2024-11405	WP Front-end login and register <= 2.1.0 - Reflected Cross-Site Scripting	hellomohsinkhan	WP Front-end login and register	Medium	6.1	2025-07-02 03:47:26	Deep Dive
CVE-2025-49029	WordPress Custom Login And Signup Widget plugin <= 1.0 - Arbitrary Code Execution vulnerability	bitto.kazi	Custom Login And Signup Widget	Critical	9.1	2025-07-01 13:27:47	Deep Dive
CVE-2025-50016	WordPress IP Based Login plugin <= 2.4.2 - Cross Site Scripting (XSS) Vulnerability	brijeshk89	IP Based Login	Medium	5.9	2025-06-20 15:04:01	Deep Dive
CVE-2025-50027	WordPress Login/Signup Popup plugin <= 2.9.4 - Cross Site Scripting (XSS) Vulnerability	xootix	Login/Signup Popup	Medium	5.9	2025-06-20 15:03:55	Deep Dive
CVE-2025-5928	WP Sliding Login/Dashboard Panel <= 2.1.1 - Cross-Site Request Forgery to Settings Update	fay-1	WP Sliding Login/Dashboard Panel	Medium	4.3	2025-06-13 01:47:51	Deep Dive
CVE-2025-23974	WordPress One-Login plugin <= 1.4 - Privilege Escalation Vulnerability	ifkooo	One-Login	High	8.1	2025-06-09 15:56:57	Deep Dive
CVE-2025-28989	WordPress Read More Login plugin <= 2.0.3 - Cross Site Scripting (XSS) Vulnerability	arildur	Read More Login	Medium	5.9	2025-06-06 12:54:30	Deep Dive
CVE-2025-4607	PSW Front-end Login & Registration <= 1.12 - Insufficiently Random Values to Unauthenticated Account Takeover/Privilege Escalation via customer_registration Function	empoweringprowebsite	PSW Front-end Login & Registration	Critical	9.8	2025-05-31 06:40:56	Deep Dive
CVE-2025-5369	SourceCodester PHP Display Username After Login login.php sql injection	SourceCodester	PHP Display Username After Login	High	7.3	2025-05-31 05:00:08	Deep Dive
CVE-2025-47646	WordPress PSW Front-end Login & Registration plugin <= 1.13 - Broken Authentication Vulnerability	Gilblas Ngunte Possi	PSW Front-end Login & Registration	-	-	2025-05-23 12:43:24	Deep Dive
CVE-2025-47670	WordPress Social Login and Register plugin <= 7.6.10 - Local File Inclusion Vulnerability	miniOrange	WordPress Social Login and Register	High	8.1	2025-05-23 12:43:22	Deep Dive
CVE-2025-4094	Digits < 8.4.6.1 - Auth Bypass via OTP Bruteforcing	Unknown	DIGITS: WordPress Mobile Number Signup and Login	-	-	2025-05-21 06:00:09	Deep Dive
CVE-2025-4934	PHPGurukul User Registration & Login and User Management System edit-profile.php sql injection	PHPGurukul	User Registration & Login and User Management System	High	7.3	2025-05-19 13:31:06	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List