Lucene search
K

454 matches found

NVD
NVD
added 2026/03/13 7:54 p.m.6 views

CVE-2026-32385

Missing Authorization vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RegistrationMagic: from n/a through = 6.0.7.6...

5.4CVSS0.00218EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/13 11:42 a.m.26 views

CVE-2026-32385 WordPress RegistrationMagic plugin <= 6.0.7.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RegistrationMagic: from n/a through = 6.0.7.6...

5.4CVSS0.00218EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/13 11:42 a.m.2 views

CVE-2026-32385

Missing Authorization vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RegistrationMagic: from n/a through = 6.0.7.6...

5.8AI score0.00218EPSS
Exploits0References2
CVE
CVE
added 2026/03/13 11:42 a.m.7 views

CVE-2026-32385

CVE-2026-32385 documents a Missing Authorization vulnerability in the Metagauss RegistrationMagic WordPress plugin (custom-registration-form-builder-with-submission-manager), affecting versions from n/a through

5.4CVSS5.8AI score0.00218EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/13 11:42 a.m.3 views

CVE-2026-32385 WordPress RegistrationMagic plugin <= 6.0.7.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RegistrationMagic: from n/a through = 6.0.7.6...

5.8AI score0.00218EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/13 12:0 a.m.10 views

WordPress plugin RegistrationMagic 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be added t...

5.4CVSS5.8AI score0.00218EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/03/12 10:36 a.m.7 views

WordPress RegistrationMagic plugin <= 6.0.7.1 - Account Takeover vulnerability

Account Takeover vulnerability discovered by 0xd4rk5id3 in WordPress Plugin RegistrationMagic versions = 6.0.7.1...

8.1CVSS5.8AI score0.00376EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/12 1:56 a.m.6 views

WordPress RegistrationMagic plugin <= 6.0.7.2 - Subscriber+ Sensitive Data Disclosure vulnerability

Subscriber+ Sensitive Data Disclosure vulnerability discovered by bRpsd in WordPress Plugin RegistrationMagic versions = 6.0.7.2...

4.3CVSS5.8AI score0.00171EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/18 10:20 a.m.3 views

CVE-2025-14444 RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login <= 6.0.6.9 - Unauthenticated Payment Bypass via rm_process_paypal_sdk_payment

The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to payment bypass due to insufficient verification of data authenticity on the 'processpaypalsdkpayment' function in all versions up to, and including, 6.0.6.9. This is...

5.3CVSS5.7AI score0.00216EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/02/18 10:20 a.m.6 views

CVE-2025-14444

The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to payment bypass due to insufficient verification of data authenticity on the 'processpaypalsdkpayment' function in all versions up to, and including, 6.0.6.9. This is...

5.3CVSS5.7AI score0.00216EPSS
Exploits0References6
CVE
CVE
added 2026/02/18 10:20 a.m.20 views

CVE-2025-14444

CVE-2025-14444 – RegistrationMagic for WordPress has a payment bypass vulnerability in the process_paypal_sdk_payment path. The issue arises from trusting client-supplied payment data without validating that PayPal payment actually completed, enabling unauthenticated users to activate registratio...

5.3CVSS5.7AI score0.00216EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/02/18 10:20 a.m.29 views

CVE-2025-14444 RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login <= 6.0.6.9 - Unauthenticated Payment Bypass via rm_process_paypal_sdk_payment

The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to payment bypass due to insufficient verification of data authenticity on the 'processpaypalsdkpayment' function in all versions up to, and including, 6.0.6.9. This is...

5.3CVSS0.00216EPSS
Exploits0References5
Patchstack
Patchstack
added 2026/02/18 12:47 a.m.12 views

WordPress RegistrationMagic - Custom Registration Forms, User Registration, Payment, and User Login plugin <= 6.0.6.9 - Unauthenticated Payment Bypass via rm_process_paypal_sdk_payment vulnerability

WordPress RegistrationMagic - Custom Registration Forms, User Registration, Payment, and User Login plugin = 6.0.6.9 - Unauthenticated Payment Bypass via rmprocesspaypalsdkpayment vulnerability discovered by Md. Moniruzzaman Prodhan NomanProdhan - Knight Squad in WordPress Plugin RegistrationMagi...

5.3CVSS5.6AI score0.00216EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/18 12:0 a.m.8 views

PT-2026-20378

The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to payment bypass due to insufficient verification of data authenticity on the 'process paypal sdk payment' function in all versions up to, and including, 6.0.6.9. This...

5.3CVSS5.7AI score0.00216EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/02/18 12:0 a.m.8 views

WordPress plugin RegistrationMagic 数据伪造问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.3CVSS5.8AI score0.00216EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/02/17 7:28 a.m.9 views

CVE-2026-0929

The RegistrationMagic WordPress plugin before 6.0.7.2 does not have proper capability checks, allowing subscribers and above to create forms on the site...

4.3CVSS5.6AI score0.00209EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/02/16 10:16 p.m.7 views

WordPress RegistrationMagic plugin < 6.0.7.2 - Subscriber+ Form Creation vulnerability

Subscriber+ Form Creation vulnerability discovered by bRpsd in WordPress Plugin RegistrationMagic versions 6.0.7.2...

4.3CVSS5.5AI score0.00209EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/02/16 9:30 a.m.5 views

EUVD-2026-6123

The RegistrationMagic WordPress plugin before 6.0.7.2 does not have proper capability checks, allowing subscribers and above to create forms on the site...

4.3CVSS5.6AI score0.00209EPSS
Exploits0References2
NVD
NVD
added 2026/02/16 7:17 a.m.5 views

CVE-2026-0929

The RegistrationMagic WordPress plugin before 6.0.7.2 does not have proper capability checks, allowing subscribers and above to create forms on the site...

4.3CVSS0.00209EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/16 6:0 a.m.2 views

CVE-2026-0929

The RegistrationMagic WordPress plugin before 6.0.7.2 does not have proper capability checks, allowing subscribers and above to create forms on the site...

5.5AI score0.00209EPSS
Exploits0References1
Rows per page
Query Builder