Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 336 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-32679 WordPress User Registration Using Contact Form 7 plugin <= 2.4 - Cross Site Request Forgery (CSRF) vulnerability ZealousWebUser Registration Using Contact Form 7 Medium 5.4 2025-04-09 16:09:14 Deep Dive
CVE-2025-2836 RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login <= 6.0.4.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting metagaussRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login Medium 6.4 2025-04-04 05:22:45 Deep Dive
CVE-2025-30899 WordPress User Registration plugin <= 4.0.3 - Cross Site Scripting (XSS) vulnerability wpeverestUser Registration Medium 5.9 2025-03-27 10:55:50 Deep Dive
CVE-2025-30888 WordPress Custom Fields Account Registration For Woocommerce Plugin <= 1.1 - Cross Site Request Forgery (CSRF) vulnerability silverplugins217Custom Fields Account Registration For Woocommerce Medium 4.3 2025-03-27 10:55:44 Deep Dive
CVE-2025-1322 WP-Recall – Registration, Profile, Commerce & More <= 16.26.10 - Authenticated (Contributor+) Protected Post Disclosure wppostWP-Recall – Registration, Profile, Commerce & More Medium 4.3 2025-03-08 09:22:55 Deep Dive
CVE-2025-1323 WP-Recall – Registration, Profile, Commerce & More <= 16.26.10 - Unauthenticated SQL Injection wppostWP-Recall – Registration, Profile, Commerce & More High 7.5 2025-03-08 09:22:55 Deep Dive
CVE-2025-1325 WP-Recall – Registration, Profile, Commerce & More <= 16.26.10 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Shortcode Exeuction wppostWP-Recall – Registration, Profile, Commerce & More Medium 6.3 2025-03-08 09:22:54 Deep Dive
CVE-2025-1324 WP-Recall – Registration, Profile, Commerce & More <= 16.26.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode wppostWP-Recall – Registration, Profile, Commerce & More Medium 6.4 2025-03-08 09:22:53 Deep Dive
CVE-2025-2050 PHPGurukul User Registration & Login and User Management System login.php sql injection PHPGurukulUser Registration & Login and User Management System High 7.3 2025-03-06 23:31:06 Deep Dive
CVE-2025-1702 Ultimate Member <= 2.10.0 - Unauthenticated SQL Injection via search Parameter ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin High 7.5 2025-03-05 11:22:09 Deep Dive
CVE-2025-23740 WordPress Easy School Registration plugin <= 3.9.8 - Reflected Cross Site Scripting (XSS) vulnerability Zbynek NedomaEasy School Registration High 7.1 2025-03-03 13:30:18 Deep Dive
CVE-2025-1511 User Registration & Membership – Custom Registration Form, Login Form, and User Profile <= 4.0.4 - Reflected Cross-Site Scripting wpeverestUser Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder Medium 6.1 2025-02-28 05:23:14 Deep Dive
CVE-2024-12038 Frontend Content Forms for User Submissions (UGC) <= 2.8.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'buddyforms_nav' Shortcode themekraftPost Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) Medium 6.4 2025-02-22 04:21:17 Deep Dive
CVE-2025-1402 Event Tickets and Registration <= 5.19.1.1 - Missing Authorization to Ticket Deletion stellarwpEvent Tickets and Registration Medium 5.3 2025-02-21 11:09:35 Deep Dive
CVE-2024-12276 Ultimate Member <= 2.9.2 - Authenticated SQL Injection ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Medium 5.3 2025-02-21 09:21:06 Deep Dive
CVE-2024-13818 Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction <= 3.8.4 - Sensitive Information Exposure via Log Files genetechproductsPie Register – User Registration, Profiles & Content Restriction Medium 5.3 2025-02-21 03:21:21 Deep Dive
CVE-2024-13120 ProfilePress < 4.15.20 - Admin+ Stored XSS UnknownPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content 中危 -2025-02-13 06:00:12 Deep Dive
CVE-2024-13121 Paid Membership Plugin < 4.15.20 - Admin+ Stored XSS UnknownPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content 中危 -2025-02-13 06:00:12 Deep Dive
CVE-2024-13119 ProfilePress < 4.15.20 - Admin+ Stored XSS UnknownPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content 中危 -2025-02-13 06:00:06 Deep Dive
CVE-2024-12037 Frontend Content Forms for User Submissions (UGC) <= 2.8.13 - Authenticated (Contributor+) Stored Cross-Site Scripting themekraftPost Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) Medium 6.4 2025-01-31 11:11:11 Deep Dive