Lucene search
K

22 matches found

NVD
NVD
added 2026/04/29 12:16 p.m.4 views

CVE-2026-42652

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpeverest User Registration user-registration allows Reflected XSS.This issue affects User Registration: from n/a through = 5.1.5...

7.1CVSS0.00149EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/29 10:40 a.m.4 views

EUVD-2026-26219

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpeverest User Registration user-registration allows Reflected XSS.This issue affects User Registration: from n/a through = 5.1.5...

7.1CVSS5.2AI score0.00149EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.11 views

PT-2026-35907

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpeverest User Registration user-registration allows Reflected XSS.This issue affects User Registration: from n/a through = 5.1.5...

7.1CVSS5.2AI score0.00149EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 5:3 p.m.6 views

CVE-2026-32488

Incorrect Privilege Assignment vulnerability in wpeverest User Registration user-registration allows Privilege Escalation.This issue affects User Registration: from n/a through = 4.4.9...

8.1CVSS5.8AI score0.00345EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/25 6:31 p.m.6 views

EUVD-2026-15830

Incorrect Privilege Assignment vulnerability in wpeverest User Registration user-registration allows Privilege Escalation.This issue affects User Registration: from n/a through = 4.4.9...

5.8AI score0.00345EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/25 4:14 p.m.4 views

CVE-2026-32488

Incorrect Privilege Assignment vulnerability in wpeverest User Registration user-registration allows Privilege Escalation.This issue affects User Registration: from n/a through = 4.4.9...

5.8AI score0.00345EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.7 views

PT-2026-28002

Name of the Vulnerable Software and Affected Versions wpeverest User Registration versions through 4.4.9 Description An incorrect privilege assignment exists in wpeverest User Registration. This allows for privilege escalation. Recommendations Update wpeverest User Registration to a version later...

8.1CVSS5.9AI score0.00345EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/01/23 9:16 p.m.4 views

CVE-2025-67956

Missing Authorization vulnerability in wpeverest User Registration user-registration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Registration: from n/a through = 4.4.6...

8.2CVSS5.4AI score0.00309EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/22 4:52 p.m.3 views

CVE-2026-24353

Missing Authorization vulnerability in wpeverest User Registration user-registration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Registration: from n/a through = 4.4.9...

8.1CVSS5.3AI score0.00162EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.11 views

PT-2026-4249

Missing Authorization vulnerability in wpeverest User Registration user-registration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Registration: from n/a through = 4.4.9...

5.4AI score0.00162EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-31235

Malicious code in bioql PyPI...

7.4CVSS9.1AI score0.00611EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:32 a.m.10 views

CVE-2023-27459

Deserialization of Untrusted Data vulnerability in WPEverest User Registration.This issue affects User Registration: from n/a through 2.3.2.1...

8.8CVSS8.6AI score0.00611EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:36 a.m.7 views

CVE-2023-23987

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WPEverest User Registration plugin = 2.3.0 versions...

5.9CVSS5.1AI score0.00392EPSS
Exploits0References1
CVE
CVE
added 2025/04/24 4:8 p.m.58 views

CVE-2025-39400

CVE-2025-39400 is a reflected Cross-Site Scripting (XSS) vulnerability in the WordPress User Registration plugin. Affected versions are WordPress User Registration

7.1CVSS7.2AI score0.00237EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/24 12:0 a.m.8 views

PT-2025-17756 · Unknown · Wpeverest User Registration

Name of the Vulnerable Software and Affected Versions: wpeverest User Registration affected versions not specified Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS in the User...

7.1CVSS7AI score0.00237EPSS
Exploits0References4
CVE
CVE
added 2025/03/27 10:55 a.m.62 views

CVE-2025-30899

Technical details about CVE-2025-30899 are not provided in the supplied documents beyond the initial description (Stored XSS in wpeverest User Registration; affected version range from n/a through 4.0.3). Monitor for official advisories for fuller technical details and remediation.

5.9CVSS7.2AI score0.00293EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/12/09 1:15 p.m.4 views

CVE-2023-29429

Missing Authorization vulnerability in wpeverest User Registration user-registration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Registration: from n/a through = 2.3.2.1...

5.3CVSS5.8AI score0.00402EPSS
Exploits0References3
CVE
CVE
added 2024/12/09 11:31 a.m.60 views

CVE-2023-29429

CVE-2023-29429 describes a Missing Authorization/Broken Access Control vulnerability in the WordPress User Registration plugin (versions

5.3CVSS8.6AI score0.00402EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/03/26 8:15 p.m.4 views

CVE-2023-27459

Deserialization of Untrusted Data vulnerability in WPEverest User Registration.This issue affects User Registration: from n/a through 2.3.2.1...

8.8CVSS7.3AI score0.00611EPSS
Exploits0References1
CVE
CVE
added 2024/03/26 8:1 p.m.99 views

CVE-2023-27459

CVE-2023-27459 describes a Deserialization of Untrusted Data vulnerability in the WordPress plugin WordPress User Registration (WPEverest/Masteriyo) for versions through 2.3.2.1. The vulnerability enables authenticated subscribers to achieve PHP Object Injection via untrusted data deserialization...

8.8CVSS8.6AI score0.00611EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder