| CVE-2024-13457 | Event Tickets <= 5.18.1 - Insecure Direct Object Reference to Sensitive Information Exposure | stellarwp | Event Tickets and Registration | Medium | 5.3 | 2025-01-30 06:41:08 | Deep Dive |
| CVE-2025-0308 | Ultimate Member <= 2.9.1 - Unauthenticated SQL Injection | ultimatemember | Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin | High | 7.5 | 2025-01-18 05:33:50 | Deep Dive |
| CVE-2025-0318 | Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin <= 2.9.1 - Information Exposure | ultimatemember | Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin | Medium | 5.3 | 2025-01-18 05:33:49 | Deep Dive |
| CVE-2024-11870 | Event Registration Calendar By vcita <= 1.4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | vcita | Event Registration Calendar By vcita | Medium | 6.4 | 2025-01-15 07:10:47 | Deep Dive |
| CVE-2024-13251 | Registration role - Critical - Access bypass - SA-CONTRIB-2024-015 | Drupal | Registration role | 中危 | - | 2025-01-09 18:58:16 | Deep Dive |
| CVE-2024-12738 | User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor <= 3.12.9 - Unauthenticated Stored Cross-Site Scripting | cozmoslabs | User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor | Medium | 6.1 | 2025-01-07 12:43:40 | Deep Dive |
| CVE-2024-12219 | Stop Registration Spam <= 1.23 - Cross-Site Request Forgery to Cross-Site Scripting | tomroyal | Stop Registration Spam | Medium | 6.1 | 2024-12-17 07:23:15 | Deep Dive |
| CVE-2024-56017 | WordPress Stop Registration Spam Plugin <= 1.23 - CSRF to Stored XSS vulnerability | Tom Royal | Stop Registration Spam | High | 7.1 | 2024-12-16 22:24:34 | Deep Dive |
| CVE-2024-10518 | ProfilePress < 4.15.15 - Admin+ Stored XSS | Unknown | Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content | 中危 | - | 2024-12-12 06:00:18 | Deep Dive |
| CVE-2024-10517 | ProfilePress < 4.15.15 - Admin+ Stored XSS | Unknown | Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content | 中危 | - | 2024-12-12 06:00:17 | Deep Dive |
| CVE-2023-29429 | WordPress User Registration plugin <= 2.3.2.1 - Broken Access Control vulnerability | wpeverest | User Registration | Medium | 5.3 | 2024-12-09 11:31:10 | Deep Dive |
| CVE-2024-53810 | WordPress Simple User Registration plugin <= 5.5 - Broken Access Control on User Deletion vulnerability | N-Media | Simple User Registration | Critical | 9.1 | 2024-12-06 13:07:38 | Deep Dive |
| CVE-2024-11083 | ProfilePress <= 4.15.18 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure | properfraction | Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress | Medium | 5.3 | 2024-11-27 05:31:54 | Deep Dive |
| CVE-2024-11818 | PHPGurukul User Registration & Login and User Management System signup.php sql injection | PHPGurukul | User Registration & Login and User Management System | High | 7.3 | 2024-11-26 23:31:05 | Deep Dive |
| CVE-2024-11817 | PHPGurukul User Registration & Login and User Management System index.php sql injection | PHPGurukul | User Registration & Login and User Management System | High | 7.3 | 2024-11-26 23:00:10 | Deep Dive |
| CVE-2024-11202 | Multiple Plugins <= (Various Versions) - Reflected Cross-Site Scripting via cminds_free_guide Shortcode | creativemindssolutions | CM Header and Footer – Add custom scripts and styles to your header and footer with ease | Medium | 6.1 | 2024-11-26 07:31:32 | Deep Dive |
| CVE-2024-10528 | Ultimate Member <= 2.8.9 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Profile Picture Update | ultimatemember | Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin | Medium | 4.3 | 2024-11-21 05:33:49 | Deep Dive |
| CVE-2023-27609 | WordPress WP Roles at Registration plugin <= 0.23 - Cross Site Scripting (XSS) vulnerability | NetTantra | WP Roles at Registration | Medium | 5.9 | 2024-11-19 21:56:18 | Deep Dive |
| CVE-2024-8874 | AJAX Login and Registration modal popup + inline form <= 2.24 - Reflected Cross-Site Scripting | kaminskym | AJAX Login and Registration modal popup + inline form | Medium | 6.1 | 2024-11-13 02:02:36 | Deep Dive |
| CVE-2024-10508 | RegistrationMagic – User Registration Plugin with Custom Registration Forms <= 6.0.2.6 - Unauthenticated Privilege Escalation via Password Recovery | metagauss | RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login | Critical | 9.8 | 2024-11-09 07:35:08 | Deep Dive |