WordPress Activity Log Vulnerabilities
Wordpress Activity Log vulnerabilities.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Arbitrary Options Manipulation in User Activity Log Plugin by WordPress
CVE-2025-13471WordPressUser Activity Log👾🟡5.3MEDIUMUser Activity Tracking and Log Plugin Vulnerability in WordPress
CVE-2024-0970WordPressUser Activity Tracking...👾🟡5.3MEDIUMStored XSS Vulnerability in CoreActivity Logging for WordPress Plugin
CVE-2024-0852WordPressCoreactivity: Activity...👾🟡8.8HIGHSQL Injection Vulnerability in LogDash Activity Log WordPress Plugin
CVE-2023-6030WordPressLogdash Activity Log👾🟡5.4MEDIUMSQL Injection Vulnerability in Activity Logging Plugin for WordPress
CVE-2025-3436WordPressCoreactivity: Activity...6.5MEDIUMUnvalidated User Input Vulnerability in WP Activity Log by WordPress
CVE-2025-0767WordPressWP Activity Log6.3MEDIUMStored Cross-Site Scripting Vulnerability in WP Activity Log Plugin for WordPress
CVE-2025-0924WordPressWP Activity LogEPSS 15%6.1MEDIUMCross-Site Request Forgery Vulnerability in Activity Log WinterLock by WordPress
CVE-2025-24982WordPressActivity Log WinterlockStored Cross-Site Scripting Vulnerability in Activity Log Plugin
CVE-2024-10788WordpressActivity Log – Monitor...7.2HIGHUnauthorized Execution of Arbitrary Web Scripts via User_id Parameter
CVE-2024-10793WordpressWP Activity Log👾🟡EPSS 57%6.1MEDIUMWordPress User Activity Log Pro plugin <= 2.3.4 - Subscriber+ Multiple Broken Access Control vulnerability
CVE-2024-37929WordPressUser Activity Log Pro6.3MEDIUMFreemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes
CVE-2022-4974WordpressYasr – Yet Another Sta...6.3MEDIUMPlugin Exposes IP Addresses of Requests via X-FORWARDED Header
CVE-2024-0868WordpressCoreactivity: Activity...👾🟡SQL Injection Vulnerability Affects User Activity Log Pro
CVE-2024-32137WordPressUser Activity Log Pro8.5HIGHSQL Injection Vulnerability Affects User Activity Log
CVE-2024-31356WordPressUser Activity Log7.6HIGHSQL Injection Vulnerability in WP Activity Log Premium Affects WordPress Sites
CVE-2024-2018WordpressWP Activity Log Premium8.8HIGHStored XSS Vulnerability in WP Activity Log
CVE-2023-50905WordPressWP Activity Log6.1MEDIUMWordPress Simple History Plugin <= 3.3.1 is vulnerable to CSV Injection
CVE-2022-45350WordPressSimple History – User ...8.8HIGHWordPress User Activity Log Plugin <= 1.6.2 is vulnerable to SQL Injection
CVE-2023-37966WordPressUser Activity Log9.8CRITICALUser Activity Log Pro < 2.3.4 - IP Spoofing
CVE-2023-5133WordpressUser-activity-log-pro👾🟡7.5HIGHUser Activity Log Pro < 2.3.4 - Unauthenticated Stored Cross-Site Scripting via User Agent
CVE-2023-5167WordpressUser-activity-log-pro👾🟡5.4MEDIUMActivity Log < 2.8.8 - IP Spoofing
CVE-2023-4281WordpressActivity Log👾🟡5.3MEDIUMUser Activity Log < 1.6.6 - Subscriber+ Log Export
CVE-2023-4269WordpressUser Activity Log👾🟡4.3MEDIUMUser Activity Log < 1.6.7 - IP Spoofing
CVE-2023-4279WordpressUser Activity Log👾🟡7.5HIGHUser Activity Tracking and Log < 4.0.9 - License Update/Deactivation via CSRF
CVE-2023-4150WordpressUser Activity Tracking...👾🟡4.3MEDIUM