Lucene search
K

453 matches found

CNVD
CNVD
added 2020/03/13 12:0 a.m.3 views

WordPress RegistrationMagic SQL Injection Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.RegistrationMagic is a user registration plugin used in it. A SQL injection vulnerability exists in WordPress RegistrationMagic version...

8.1CVSS7.6AI score0.01919EPSS
Exploits1
NVD
NVD
added 2020/03/12 2:15 p.m.12 views

CVE-2020-8435

An issue was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPress. There is SQL injection via the rmanalyticsshowform rmformid parameter...

8.1CVSS8.5AI score0.01919EPSS
Exploits1References3
NVD
NVD
added 2020/03/12 2:15 p.m.8 views

CVE-2020-8436

XSS was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPress via the rmformid, rmtr, or formname parameter...

6.1CVSS6.1AI score0.01353EPSS
Exploits2References3
OSV
OSV
added 2020/03/12 2:15 p.m.3 views

CVE-2020-8436

XSS was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPress via the rmformid, rmtr, or formname parameter...

6.1CVSS5.8AI score0.01353EPSS
Exploits2References3
OSV
OSV
added 2020/03/12 2:15 p.m.3 views

CVE-2020-8435

An issue was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPress. There is SQL injection via the rmanalyticsshowform rmformid parameter...

8.1CVSS7.3AI score0.01919EPSS
Exploits1References3
Prion
Prion
added 2020/03/12 2:15 p.m.17 views

Cross site scripting

XSS was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPress via the rmformid, rmtr, or formname parameter...

4.3CVSS6AI score0.01353EPSS
Exploits2References3Affected Software1
Prion
Prion
added 2020/03/12 2:15 p.m.15 views

Sql injection

An issue was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPress. There is SQL injection via the rmanalyticsshowform rmformid parameter...

5.5CVSS8.5AI score0.01919EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2020/03/12 1:32 p.m.13 views

CVE-2020-8435

An issue was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPress. There is SQL injection via the rmanalyticsshowform rmformid parameter...

8.6AI score0.01919EPSS
Exploits1References3
CVE
CVE
added 2020/03/12 1:32 p.m.78 views

CVE-2020-8435

Summary: CVE-2020-8435 concerns the WordPress RegistrationMagic plugin (v4.6.0.0) with a SQL injection via the rm_analytics_show_form rm_form_id parameter. The issue is documented across multiple feeds and is described as an injection vulnerability that could enable unauthorized access to the bac...

8.1CVSS8.4AI score0.01919EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2020/03/12 1:31 p.m.18 views

CVE-2020-8436

XSS was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPress via the rmformid, rmtr, or formname parameter...

6.1AI score0.01353EPSS
Exploits2References3
CVE
CVE
added 2020/03/12 1:31 p.m.77 views

CVE-2020-8436

CVE-2020-8436 describes a cross-site scripting (XSS) vulnerability in the WordPress plugin RegistrationMagic (version 4.6.0.0). The issue arises from insufficient validation of client-side data and can be triggered via user-supplied input in the rm_form_id, rm_tr, or form_name parameters. The NVD...

6.1CVSS6AI score0.01353EPSS
Exploits2References3Affected Software1
CNVD
CNVD
added 2020/03/10 12:0 a.m.4 views

WordPress RegistrationMagic Unauthorized Operation Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.RegistrationMagic is a user registration plugin used in it. A security vulnerability exists in WordPress RegistrationMagic 4.6.0.3 and...

4.3CVSS6.8AI score0.01439EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/10 12:0 a.m.2 views

WordPress RegistrationMagic elevation of privilege vulnerability (CNVD-2020-16636)

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.RegistrationMagic is a user registration plugin used in it. A security vulnerability exists in WordPress RegistrationMagic 4.6.0.3 and...

8.8CVSS6.7AI score0.02533EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/09 12:0 a.m.1 views

WordPress RegistrationMagic Elevation of Privilege Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.RegistrationMagic is a user registration plugin used in it. A security vulnerability exists in WordPress RegistrationMagic 4.6.0.3 and...

8.8CVSS6.7AI score0.02511EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/09 12:0 a.m.6 views

WordPress RegistrationMagic Cross-Site Request Forgery Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.RegistrationMagic is a user registration plugin used in it. A cross-site request forgery vulnerability exists in WordPress...

8.8CVSS6.7AI score0.0109EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/09 12:0 a.m.3 views

Unspecified Vulnerability in WordPress RegistrationMagic

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.RegistrationMagic is a user registration plugin used in it. A security vulnerability exists in the export function in WordPress...

8.8CVSS6.6AI score0.02511EPSS
Exploits1References1
NVD
NVD
added 2020/03/06 7:15 p.m.17 views

CVE-2020-9457

The RegistrationMagic plugin through 4.6.0.3 for WordPress allows remote authenticated users with minimal privileges to import custom vulnerable forms and change form settings via classrmformsettingscontroller.php, resulting in privilege escalation...

8.8CVSS8.5AI score0.02533EPSS
Exploits1References3
OSV
OSV
added 2020/03/06 7:15 p.m.0 views

CVE-2020-9456

In the RegistrationMagic plugin through 4.6.0.3 for WordPress, the user controller allows remote authenticated users with minimal privileges to elevate their privileges to administrator via classrmusercontroller.php rmuseredit...

8.8CVSS7.3AI score0.02511EPSS
Exploits1References3
NVD
NVD
added 2020/03/06 7:15 p.m.14 views

CVE-2020-9458

In the RegistrationMagic plugin through 4.6.0.3 for WordPress, the export function allows remote authenticated users with minimal privileges to export submitted form data and settings via classrmformcontroller.php rmformexport...

8.8CVSS8.4AI score0.02511EPSS
Exploits1References3
NVD
NVD
added 2020/03/06 7:15 p.m.13 views

CVE-2020-9455

The RegistrationMagic plugin through 4.6.0.3 for WordPress allows remote authenticated users with minimal privileges to send arbitrary emails on behalf of the site via classrmuserservices.php sendemailuserview...

4.3CVSS4.6AI score0.01439EPSS
Exploits1References3
Rows per page
Query Builder