Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 263 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-4133 ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup <= 4.0.30 - Open Redirect reputeinfosystemsARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup Medium 6.1 2024-05-02 16:52:18 Deep Dive
CVE-2024-2867 Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.15.4 - Authenticated (Contributor+) Stored Cross-Site Scripting properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 6.4 2024-05-02 16:52:05 Deep Dive
CVE-2024-2920 WP-Members Membership Plugin <= 3.4.9.3 - Unprotected Storage of Potentially Sensitive Files cbutlerjrWP-Members Membership Plugin Medium 5.3 2024-04-26 07:28:19 Deep Dive
CVE-2024-3730 Simple Membership <= 4.4.3 - Authenticated(Contributor+) Stored Cross-Site Scripting via Shortcode wpinsider-1Simple Membership Medium 5.4 2024-04-25 11:00:22 Deep Dive
CVE-2024-3210 Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.15.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'reg-single-checkbox' properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 6.4 2024-04-10 05:32:23 Deep Dive
CVE-2024-0899 s2Member – Best Membership Plugin for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions <= 230815 - Information Exposure clavaques2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions Medium 5.3 2024-04-09 18:59:03 Deep Dive
CVE-2024-1852 WP-Members Membership Plugin <= 3.4.9.2 - Unauthenticated Stored Cross-Site Scripting cbutlerjrWP-Members Membership Plugin High 7.2 2024-04-09 18:58:29 Deep Dive
CVE-2024-27995 WordPress ARMember plugin <= 4.0.23 - Cross Site Scripting (XSS) vulnerability Repute InfosystemsARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup Medium 5.9 2024-03-21 15:00:59 Deep Dive
CVE-2024-29138 WordPress Restrict User Access plugin <= 2.5 - Reflected Cross Site Scripting (XSS) vulnerability Joachim JensenRestrict User Access – Membership Plugin with Force High 7.1 2024-03-19 13:40:40 Deep Dive
CVE-2024-0687 Restrict User Access – Ultimate Membership & Content Protection <= 2.5 - Information Exposure intoxstudioRestrict User Access – Ultimate Membership & Content Protection Medium 5.3 2024-03-13 15:27:26 Deep Dive
CVE-2024-1806 ProfilePress <= 4.15.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via profilepress-edit-profile Shortcode properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 6.4 2024-03-13 15:27:17 Deep Dive
CVE-2024-1985 Simple Membership <= 4.4.2 - Unauthenticated Stored Self-Based Cross-Site Scripting wpinsider-1Simple Membership Medium 4.7 2024-03-13 15:27:04 Deep Dive
CVE-2024-1409 Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.15.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via [reg-select-role] Shortcode properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 6.4 2024-03-13 15:26:49 Deep Dive
CVE-2024-1535 ProfilePress <= 4.15.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 6.4 2024-03-13 15:26:44 Deep Dive
CVE-2024-1071 WordPress Plugin Ultimate Member 安全漏洞 ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Critical 9.8 2024-03-13 15:26:32 Deep Dive
CVE-2024-2123 Ultimate Member <= 2.8.3 - Unauthenticated Stored Cross-Site Scripting ultimatememberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin High 7.2 2024-03-13 09:35:15 Deep Dive
CVE-2024-2333 CodeAstro Membership Management System add_members.php sql injection CodeAstroMembership Management System Medium 6.3 2024-03-09 15:31:04 Deep Dive
CVE-2024-1987 WP-Members Membership Plugin <= 3.4.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode cbutlerjrWP-Members Membership Plugin Medium 6.4 2024-03-08 05:31:47 Deep Dive
CVE-2024-2149 CodeAstro Membership Management System settings.php sql injection CodeAstroMembership Management System Medium 4.7 2024-03-03 17:31:04 Deep Dive
CVE-2024-1924 CodeAstro Membership Management System get_membership_amount.php sql injection CodeAstroMembership Management System Medium 6.3 2024-02-27 16:31:04 Deep Dive