Lucene search
+L

333 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-51768

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00254EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/09/13 7:25 a.m.29 views

CVE-2025-9693

The User Meta – User Profile Builder and User management plugin plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the postInsertUserProcess function in all versions up to, and including, 3.1.2. This makes it possible for authenticated...

8CVSS7.3AI score0.00515EPSS
Exploits0References1
cvelist
cvelist
added 2025/09/11 7:25 a.m.11 views

CVE-2025-9693 User Meta – User Profile Builder and User management plugin <= 3.1.2 - Authenticated (Subscriber+) Arbitrary File Deletion

The User Meta – User Profile Builder and User management plugin plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the postInsertUserProcess function in all versions up to, and including, 3.1.2. This makes it possible for authenticated...

8CVSS0.00515EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/08/18 7:16 a.m.9 views

CVE-2025-8896

The User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'gdprcommunicationpreferences' parameter in all versions up to, and including, 3.14.3 due to insufficient input sanitization and...

6.4CVSS6AI score0.00185EPSS
Exploits0References1
nvd
nvd
added 2025/08/16 7:15 a.m.6 views

CVE-2025-8896

The User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'gdprcommunicationpreferences' parameter in all versions up to, and including, 3.14.3 due to insufficient input sanitization and...

6.4CVSS0.00185EPSS
Exploits0References2
cve
cve
added 2025/08/16 6:39 a.m.23 views

CVE-2025-8896

CVE-2025-8896 affects the WordPress plugin User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor (versions up to 3.14.3). Root cause: stored XSS via the gdpr_communication_preferences[] parameter due to insufficient input sanitization and output escaping. Impa...

6.4CVSS5.9AI score0.00185EPSS
Exploits0References2
cvelist
cvelist
added 2025/08/16 6:39 a.m.9 views

CVE-2025-8896 User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor <= 3.14.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting

The User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'gdprcommunicationpreferences' parameter in all versions up to, and including, 3.14.3 due to insufficient input sanitization and...

6.4CVSS0.00185EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/08/16 6:39 a.m.3 views

CVE-2025-8896 User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor <= 3.14.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting

The User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'gdprcommunicationpreferences' parameter in all versions up to, and including, 3.14.3 due to insufficient input sanitization and...

6.4CVSS5.9AI score0.00185EPSS
Exploits0References2
patchstack
patchstack
added 2025/08/16 2:10 a.m.7 views

WordPress User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin <= 3.14.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability

Authenticated Subscriber+ Stored Cross-Site Scripting vulnerability discovered by Alex in WordPress Plugin Profile Builder versions = 3.14.3...

6.4CVSS5.5AI score0.00185EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2025/08/16 12:0 a.m.8 views

PT-2025-33539 · WordPress · User Profile Builder

Name of the Vulnerable Software and Affected Versions: User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin for WordPress versions through 3.14.3 Description: The User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Edito...

6.4CVSS5.7AI score0.00185EPSS
Exploits0References7
cnnvd
cnnvd
added 2025/08/16 12:0 a.m.3 views

WordPress plugin User Profile Builder 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.4CVSS6AI score0.00185EPSS
Exploits0References3
cnvd
cnvd
added 2025/06/11 12:0 a.m.7 views

WordPress Profile Builder Plugin Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. WordPress Profile Builder Plugin suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping of user-supplied...

6.4CVSS6.4AI score0.00238EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/06/08 1:19 p.m.7 views

CVE-2025-49292

Improper Validation of Specified Quantity in Input vulnerability in Cozmoslabs Profile Builder profile-builder allows Phishing.This issue affects Profile Builder: from n/a through = 3.13.8...

4.3CVSS5.9AI score0.00261EPSS
Exploits0References1
nvd
nvd
added 2025/06/06 1:15 p.m.8 views

CVE-2025-49292

Improper Validation of Specified Quantity in Input vulnerability in Cozmoslabs Profile Builder profile-builder allows Phishing.This issue affects Profile Builder: from n/a through = 3.13.8...

4.3CVSS0.00261EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/06/06 12:53 p.m.5 views

CVE-2025-49292 WordPress Profile Builder <= 3.13.8 - Content Spoofing Vulnerability

Improper Validation of Specified Quantity in Input vulnerability in Cozmoslabs Profile Builder allows Phishing. This issue affects Profile Builder: from n/a through 3.13.8...

4.3CVSS7.2AI score0.00261EPSS
Exploits0References1
cve
cve
added 2025/06/06 12:53 p.m.46 views

CVE-2025-49292

The CVE-2025-49292 entry concerns Cozmoslabs Profile Builder. Connected Red Hat data confirms an input validation weakness (improper validation of a specified quantity) that enables phishing. Affected product: Profile Builder up to version 3.13.8. Root cause described as improper validation of in...

4.3CVSS5.9AI score0.00261EPSS
Exploits0References1
cvelist
cvelist
added 2025/06/06 12:53 p.m.16 views

CVE-2025-49292 WordPress Profile Builder plugin <= 3.13.8 - Content Spoofing Vulnerability

Improper Validation of Specified Quantity in Input vulnerability in Cozmoslabs Profile Builder profile-builder allows Phishing.This issue affects Profile Builder: from n/a through = 3.13.8...

4.3CVSS0.00261EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/06/06 12:0 a.m.4 views

PT-2025-24226 · Cozmoslabs · Cozmoslabs Profile Builder

Name of the Vulnerable Software and Affected Versions: Cozmoslabs Profile Builder versions 3.13.8 and earlier Description: The issue is related to improper validation of specified quantity in input, which allows phishing. Recommendations: For Cozmoslabs Profile Builder versions 3.13.8 and earlier...

4.3CVSS4.4AI score0.00261EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/06/06 12:0 a.m.4 views

WordPress plugin Profile Builder 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS4.9AI score0.00261EPSS
Exploits0References1
patchstack
patchstack
added 2025/06/05 12:13 a.m.12 views

WordPress Profile Builder plugin <= 3.13.8 - Content Spoofing Vulnerability

Content Spoofing Vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Profile Builder versions = 3.13.8...

4.3CVSS6.7AI score0.00261EPSS
Exploits0Affected Software1
Rows per page
Query Builder