Properfraction

Profilepress

39 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-1409

  • EPSS 0.27%
  • Veröffentlicht 13.03.2024 16:15:21
  • Zuletzt bearbeitet 08.04.2026 18:20:37

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's [reg-select-role] shortcode in all versions u...

5.4

CVE-2024-1570

  • EPSS 0.24%
  • Veröffentlicht 29.02.2024 01:43:52
  • Zuletzt bearbeitet 08.04.2026 18:20:43

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's login-password shortcode in all versions up t...

6.1

CVE-2024-1519

  • EPSS 1.66%
  • Veröffentlicht 29.02.2024 01:43:52
  • Zuletzt bearbeitet 08.04.2026 18:20:42

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'name' parameter in all versions up to, and including,...

5.4

CVE-2024-1408

  • EPSS 0.24%
  • Veröffentlicht 29.02.2024 01:43:49
  • Zuletzt bearbeitet 08.04.2026 18:20:37

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's edit-profile-text-box shortcode in all versio...

5.4

CVE-2024-1046

  • EPSS 0.24%
  • Veröffentlicht 05.02.2024 22:16:06
  • Zuletzt bearbeitet 08.04.2026 18:20:22

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin 'reg-number-field' shortcode in all versions up...

7.2

CVE-2022-45083

  • EPSS 0.27%
  • Veröffentlicht 19.01.2024 15:15:08
  • Zuletzt bearbeitet 21.11.2024 07:28:44

Deserialization of Untrusted Data vulnerability in ProfilePress Membership Team Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress.This issue affects Paid Membership Plugin, Ecommerce...

7.5

CVE-2023-44150

  • EPSS 0.62%
  • Veröffentlicht 30.11.2023 15:15:08
  • Zuletzt bearbeitet 21.11.2024 08:25:19

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ProfilePress Membership Team Paid Membership Plugin, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content – ProfilePress.This issue affects Paid Membersh...

6.1

CVE-2023-23830

  • EPSS 0.24%
  • Veröffentlicht 03.05.2023 16:15:09
  • Zuletzt bearbeitet 21.11.2024 07:46:54

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ProfilePress Membership Team ProfilePress plugin <= 4.5.4 versions.

5.4

CVE-2023-23820

  • EPSS 0.26%
  • Veröffentlicht 03.05.2023 13:15:11
  • Zuletzt bearbeitet 21.11.2024 07:46:53

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in ProfilePress Membership Team ProfilePress plugin <= 4.5.4 versions.

4.8

CVE-2023-23996

  • EPSS 0.24%
  • Veröffentlicht 06.04.2023 08:15:07
  • Zuletzt bearbeitet 21.11.2024 07:47:13

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in ProfilePress Membership Team ProfilePress plugin <= 4.5.3 versions.