CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Nuclei•added yesterday•9 views

Ultimate Member < 2.1.12 - Unauthenticated Privilege Escalation via User Meta

An issue was discovered in the Ultimate Member plugin before 2.1.12 for WordPress, aka Unauthenticated Privilege Escalation via User Meta. An attacker could supply an array parameter for sensitive metadata, such as the wpcapabilities user meta that defines a user's role. During the registration...

10CVSS7.3AI score0.6202EPSS

Exploits2References3

NVD•added 2 days ago•5 views

CVE-2026-5076

The ARMember Premium plugin for WordPress is vulnerable to an insecure password reset mechanism in all versions up to, and including, 7.3.1. The plugin stores a plaintext copy of the password reset key in the armresetpasswordkey user meta field when a user requests a password reset. This is in...

9.8CVSS0.00043EPSS

CVE•added 2 days ago•10 views

CVE-2026-5076

CVE-2026-5076 concerns ARMember Premium for WordPress (

Vulnrichment•added 2 days ago•6 views

CVE-2026-5076 ARMember Premium <= 7.3.1 - Insecure Password Reset Mechanism to Unauthenticated Privilege Escalation

EUVD•added 2 days ago•5 views

EUVD-2026-34003

ATTACKERKB•added 2 days ago•6 views

CVE-2026-5076

9.8CVSS5.9AI score0.00064EPSS

Positive Technologies•added 2 days ago•5 views

PT-2026-45846

The ARMember Premium plugin for WordPress is vulnerable to an insecure password reset mechanism in all versions up to, and including, 7.3.1. The plugin stores a plaintext copy of the password reset key in the arm reset password key user meta field when a user requests a password reset. This is in...

EUVD•added 6 days ago•4 views

EUVD-2026-33255

The OTP Login With Phone Number, OTP Verification plugin for WordPress is vulnerable to authentication bypass in versions 1.8.50 through 1.8.60. This is due to the Firebase verification flow in the lwpajaxregister AJAX handler not binding the Firebase session to the phone number supplied in the...

9.8CVSS5.8AI score0.00263EPSS

Exploits0References6

EUVD•added last week•7 views

EUVD-2026-32722

The Meta Field Block plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.5.1. This is due to the plugin allowing users to specify arbitrary object IDs and object types via block attributes without validating whether the authenticated user...

Vulnrichment•added last week•8 views

CVE-2026-3173 Meta Field Block <= 1.5.1 - Insecure Direct Object Reference to Authenticated (Contributor+) Arbitrary User Meta Exposure

CVE•added last week•10 views

CVE-2026-3173

The Meta Field Block plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to and including 1.5.1. Authenticated attackers with Contributor-level access or higher can read arbitrary user meta, post meta, and term meta from any object, potentially exposing PII (...

Cvelist•added last week•27 views

CVE-2026-3173 Meta Field Block <= 1.5.1 - Insecure Direct Object Reference to Authenticated (Contributor+) Arbitrary User Meta Exposure

6.5CVSS0.00031EPSS

Positive Technologies•added 2026/05/28 12:0 a.m.•6 views

PT-2026-44188

Patchstack•added 2026/05/27 12:0 a.m.•5 views

Exploits0References5

WordPress Meta Field Block – Display custom fields in the Block Editor without coding plugin <= 1.5.1 - Insecure Direct Object Reference to Authenticated (Contributor+) Arbitrary User Meta Exposure vulnerability

Insecure Direct Object Reference to Authenticated Contributor+ Arbitrary User Meta Exposure vulnerability discovered by Osvaldo Noe Gonzalez Del Rio Os - krei.dev | ogbuilders.io in WordPress Plugin Meta Field Block versions = 1.5.1...

6.5CVSS5.8AI score0.00031EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/05/22 4:29 a.m.•3 views

CVE-2026-9018

The Easy Elements for Elementor – Addons & Website Templates plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.4.5 via the easyelhandleregister function. This is due to the wpajaxnopriveelregister AJAX handler iterating the attacker-controlled...

8.8CVSS5.8AI score0.00029EPSS

Exploits1References6

CVE•added 2026/05/14 6:44 a.m.•7 views

CVE-2026-6506

CVE-2026-6506 affects the InfusedWoo Pro plugin for WordPress (up to version 5.1.2) due to the function infusedwoo_gdpr_upddata() lacking authorization and capability checks and not restricting which user meta keys can be updated. This enables authenticated attackers with subscriber-level access ...

8.8CVSS5.8AI score0.00041EPSS

Cvelist•added 2026/05/14 6:44 a.m.•32 views

CVE-2026-6506 InfusedWoo Pro <= 5.1.2 - Authenticated (Subscriber+) Missing Authorization to Privilege Escalation via Arbitrary User Meta Update

The InfusedWoo Pro plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 5.1.2. This is due to the infusedwoogdprupddata function missing authorization and capability checks, as well as lacking restrictions on which user meta keys can be updated. This...

8.8CVSS0.00041EPSS