WordPress plugin Simple User Profile 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

CVE-2024-49604

Authentication Bypass Using an Alternate Path or Channel vulnerability in N-Media Simple User Registration wp-registration allows Authentication Bypass.This issue affects Simple User Registration: from n/a through = 6.7...

CVE-2024-53810

Missing Authorization vulnerability in N-Media Simple User Registration wp-registration allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Simple User Registration: from n/a through = 5.5...

WordPress Simple User Profile plugin <= 1.9 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin Simple User Profile versions = 1.9...

CVE-2024-53810

Missing Authorization vulnerability in N-Media Simple User Registration wp-registration allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Simple User Registration: from n/a through = 5.5...

CVE-2024-53810

The CVE-2024-53810 entry concerns the WordPress plugin Simple User Registration (versions up to 5.5). Reported as a Missing Authorization vulnerability, it allows accessing functionality that is not properly constrained by ACLs. Public details in connected sources confirm the root cause as broken...

PT-2024-35925 · Unknown · Najeeb Ahmad Simple User Registration

Name of the Vulnerable Software and Affected Versions: Najeeb Ahmad Simple User Registration versions through 5.5 Description: The issue is related to a Missing Authorization vulnerability, which allows accessing functionality not properly constrained by ACLs. This enables unauthorized access...

WordPress plugin Simple User Registration 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

WordPress Simple User Registration plugin <= 5.5 - Broken Access Control on User Deletion vulnerability

Broken Access Control on User Deletion vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Simple User Registration versions = 5.5...

CVE-2024-49604

Authentication Bypass Using an Alternate Path or Channel vulnerability in Najeeb Ahmad Simple User Registration allows Authentication Bypass.This issue affects Simple User Registration: from n/a through 5.5...

CVE-2024-49604

Authentication Bypass Using an Alternate Path or Channel vulnerability in N-Media Simple User Registration wp-registration allows Authentication Bypass.This issue affects Simple User Registration: from n/a through = 6.7...

CVE-2024-49604 WordPress Simple User Registration plugin <= 6.7 - Broken Authentication vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in N-Media Simple User Registration wp-registration allows Authentication Bypass.This issue affects Simple User Registration: from n/a through = 6.7...

CVE-2024-49604

CVE-2024-49604 targets WordPress plugin Simple User Registration (versions n/a–5.5). The issue is an Authentication Bypass via an alternate path or channel, enabling account takeovers as described in multiple sources. Public records list the vulnerability with a critical impact (base score up to ...

WordPress plugin Simple User Registration 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

WordPress Simple User Registration plugin <= 6.7 - Broken Authentication vulnerability

Broken Authentication vulnerability discovered by stealthcopter in WordPress Plugin Simple User Registration versions = 6.7...

WordPress Simple User Registration Plugin <= 6.0 is vulnerable to Broken Authentication

Software Simple User Registration Type Plugin Vulnerable versions = 6.0 Fixed in N/A OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2024-49604 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 22ee8177d626 Credits...

CVE-2023-32298

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Kathy Darling Simple User Listing plugin = 1.9.2 versions...

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Kathy Darling Simple User Listing plugin = 1.9.2 versions...

CVE-2023-32298 WordPress Simple User Listing Plugin <= 1.9.2 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Kathy Darling Simple User Listing plugin = 1.9.2 versions...

CVE-2023-32298

CVE-2023-32298 is a reflected XSS vulnerability in the WordPress plugin Simple User Listing (versions