Lucene search
K

155 matches found

NVD
NVD
added 2024/03/21 3:16 p.m.17 views

CVE-2024-27995

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Repute Infosystems ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup allows Stored XSS.This issue affects ARMember – Membership Plugin, Content Restrictio...

5.9CVSS5.7AI score0.00334EPSS
Exploits0References1
CVE
CVE
added 2024/03/21 3:0 p.m.68 views

CVE-2024-27995

CVE-2024-27995 (ARMember) : The vulnerability is an authenticated (Administrator+) stored cross-site scripting flaw in Repute Infosystems ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup. The issue arises from improper neutralization of input during web...

5.9CVSS8.6AI score0.00334EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/21 12:0 a.m.6 views

PT-2024-22193 · Repute Infosystems · Armember

Name of the Vulnerable Software and Affected Versions: Repute Infosystems ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup versions through 4.0.23 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also kno...

5.9CVSS8.8AI score0.00334EPSS
Exploits0References5
CVE
CVE
added 2024/01/08 7:18 p.m.43 views

CVE-2023-52200

CVE-2023-52200 affects ARMember

9.8CVSS8.6AI score0.0027EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/01/08 7:18 p.m.23 views

CVE-2023-52200 WordPress ARMember Plugin <= 4.0.22 is vulnerable to Cross Site Request Forgery (CSRF) leading to PHP Object Injection

Cross-Site Request Forgery CSRF, Deserialization of Untrusted Data vulnerability in Repute Infosystems ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup.This issue affects ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile &...

9.6CVSS9.6AI score0.0027EPSS
Exploits0References1
NVD
NVD
added 2023/12/28 7:15 p.m.18 views

CVE-2023-50841

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Repute Infosystems BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin.This issue affects BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin...

8.8CVSS0.00537EPSS
Exploits0References1
CVE
CVE
added 2023/12/28 6:37 p.m.58 views

CVE-2023-50841

CVE-2023-50841 denotes an SQL Injection in BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin by Repute Infosystems. Affected versions are listed as from n/a through 1.0.72. The Red Hat advisory confirms the flaw (improper neutralization of input in SQL) and states th...

8.8CVSS8.8AI score0.00537EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/11/30 4:15 p.m.5 views

CVE-2023-36507

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Repute Infosystems BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin.This issue affects BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin: from n/a through 1.0.6...

5.3CVSS7.3AI score0.0051EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/30 3:26 p.m.30 views

CVE-2023-36507 WordPress BookingPress Plugin <= 1.0.64 is vulnerable to Sensitive Data Exposure

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Repute Infosystems BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin.This issue affects BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin: from n/a through 1.0.6...

5.3CVSS5.6AI score0.0051EPSS
Exploits0References1
CVE
CVE
added 2023/11/30 3:26 p.m.39 views

CVE-2023-36507

Summary (CVE-2023-36507) : Affected software is the BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin for WordPress. The issue is an unauthenticated information disclosure in BookingPress versions up to and including 1.0.64, caused by exposure of sensitive server inf...

5.3CVSS6.7AI score0.0051EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/11/03 1:15 p.m.3 views

CVE-2022-46808

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Repute Infosystems ARMember armember-membership allows SQL Injection.This issue affects ARMember: from n/a through 3.4.11...

9.8CVSS5.8AI score0.00639EPSS
Exploits0References1
NVD
NVD
added 2023/11/03 1:15 p.m.19 views

CVE-2022-46808

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Repute Infosystems ARMember armember-membership allows SQL Injection.This issue affects ARMember: from n/a through 3.4.11...

9.8CVSS9.8AI score0.00639EPSS
Exploits0References1
Prion
Prion
added 2023/11/03 1:15 p.m.14 views

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Repute Infosystems ARMember armember-membership allows SQL Injection.This issue affects ARMember: from n/a through 3.4.11...

7.5CVSS9.7AI score0.00639EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/11/03 12:36 p.m.49 views

CVE-2022-46808

CVE-2022-46808 affects ARMember (armember-membership) for WordPress. Description confirms an unauthenticated SQL Injection due to improper neutralization, impacting ARMember versions up to 3.4.11. The vulnerability is classified as high severity (NVD metrics show CVSS v3.1 base score 9.8; PatchSt...

9.8CVSS8.9AI score0.00639EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/07/18 3:15 p.m.29 views

CVE-2022-47421

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Repute InfoSystems ARMember free, Repute InfoSystems ARMember premium plugins...

5.9CVSS0.00388EPSS
Exploits0References2
Prion
Prion
added 2023/07/18 3:15 p.m.26 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Repute InfoSystems ARMember free, Repute InfoSystems ARMember premium plugins...

4.3CVSS4.8AI score0.00388EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/18 2:0 p.m.16 views

CVE-2022-47421 WordPress ARMember (free) and ARMember (premium) plugins - vulnerable to Auth. Stored Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Repute InfoSystems ARMember free, Repute InfoSystems ARMember premium plugins...

5.9CVSS5.6AI score0.00388EPSS
Exploits0References2
CVE
CVE
added 2023/07/18 2:0 p.m.56 views

CVE-2022-47421

CVE-2022-47421: Auth. (admin+) Stored Cross-Site Scripting in Repute InfoSystems ARMember (free) and ARMember (premium) WordPress plugins. Administrative users can inject stored XSS via input in ARMember settings/messages; impact per sources includes confidentiality/integrity exposure with potent...

5.9CVSS5.1AI score0.00388EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/07/18 2:0 p.m.30 views

CVE-2022-47421 WordPress ARMember (free) and ARMember (premium) plugins - vulnerable to Auth. Stored Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Repute InfoSystems ARMember free, Repute InfoSystems ARMember premium plugins...

5.9CVSS5.5AI score0.00388EPSS
Exploits0References2
NVD
NVD
added 2023/06/22 1:15 p.m.19 views

CVE-2023-33323

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Repute InfoSystems ARMember plugin = 4.0.2 versions...

5.9CVSS5.4AI score0.00369EPSS
Exploits0References1
Rows per page
Query Builder