Pie Register Security Vulnerabilities and Issues — Pie Register CVE List

Lucene search

GenetechsolutionsPie Register

4 matches found

CVE•added 2019/07/23 2:15 p.m.•56 views

CVE-2019-1010207

Genetechsolutions Pie Register 3.0.15 is affected by: Cross Site Scripting (XSS). The impact is: Stealing of session cookies. The component is: File: Login. Parameters: interim-login, wp-lang, and supplied URL. The attack vector is: If a victim clicks a malicious link, the attacker can steal his/he...

6.1CVSS6.1AI score0.00347EPSS

CVE•added 2021/04/22 9:15 p.m.•53 views

CVE-2021-24239

The Pie Register – User Registration Forms. Invitation based registrations, Custom Login, Payments WordPress plugin before 3.7.0.1 does not sanitise the invitaion_code GET parameter when outputting it in the Activation Code page, leading to a reflected Cross-Site Scripting issue.

6.1CVSS6.1AI score0.04595EPSS

CVE•added 2022/12/19 2:15 p.m.•44 views

CVE-2022-4024

The Registration Forms WordPress plugin before 3.8.1.3 does not have authorisation and CSRF when deleting users via an init action handler, allowing unauthenticated attackers to delete arbitrary users (along with their posts)

6.5CVSS6.6AI score0.00178EPSS

CVE•added 2015/10/16 8:59 p.m.•41 views

CVE-2015-7682

Multiple SQL injection vulnerabilities in pie-register/pie-register.php in the Pie Register plugin before 2.0.19 for WordPress allow remote administrators to execute arbitrary SQL commands via the (1) select_invitaion_code_bulk_option or (2) invi_del_id parameter in the pie-invitation-codes page to...

6.5CVSS8.7AI score0.00362EPSS