WordPress Login As User Or Customer (user Switching) Vulnerabilities
Wordpress Login As User Or Customer (user Switching) vulnerabilities.
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Insecure Direct Object Reference in ProfilePress Plugin by WordPress
CVE-2026-3453WordPressPaid Membership Plugin...8.1HIGHImproper Privilege Management in User Registration & Membership Plugin for WordPress
CVE-2026-1492WordPressUser Registration & Me...9.8CRITICALAuthentication Bypass in User Registration & Membership Plugin for WordPress
CVE-2026-1779WordPressUser Registration & Me...8.1HIGHInsecure Direct Object Reference in User Registration & Membership Plugin for WordPress
CVE-2026-2356WordPressUser Registration & Me...5.3MEDIUMReflected Cross-Site Scripting Vulnerability in Ultimate Member Plugin for WordPress
CVE-2026-1404WordPressUltimate Member โ User...6.1MEDIUMPayment Bypass in RegistrationMagic Plugin for WordPress
CVE-2025-14444WordPressRegistrationmagic โ Cu...5.3MEDIUMAuthorization Bypass in RegistrationMagic Plugin for WordPress
CVE-2026-1054WordPressRegistrationmagic โ Cu...5.3MEDIUMPrivilege Escalation Vulnerability in RegistrationMagic Plugin for WordPress
CVE-2025-15403WordPressRegistrationmagic โ Cu...9.8CRITICALCross-Site Request Forgery Vulnerability in User Registration Plugin by WordPress
CVE-2025-14976WordPressUser Registration & Me...5.4MEDIUMStored Cross-Site Scripting Vulnerability in Ultimate Member Plugin for WordPress
CVE-2025-13220WordPressUltimate Member โ User...6.4MEDIUMVulnerability in Ultimate Member Plugin for WordPress Affects User Data Security
CVE-2025-12492WordPressUltimate Member โ User...5.3MEDIUMProfile Privacy Setting Bypass in Ultimate Member Plugin for WordPress
CVE-2025-14081WordPressUltimate Member โ User...4.3MEDIUMStored Cross-Site Scripting Vulnerability in Ultimate Member Plugin for WordPress
CVE-2025-13217WordPressUltimate Member โ User...6.4MEDIUMStored Cross-Site Scripting Vulnerability in RegistrationMagic Plugin for WordPress
CVE-2025-13610WordPressRegistrationmagic โ Cu...6.4MEDIUMStored Cross-Site Scripting in User Registration & Membership Plugin for WordPress
CVE-2025-13367WordPressUser Registration & Me...6.4MEDIUMArbitrary Shortcode Execution in ProfilePress Plugin for WordPress
CVE-2025-13642WordPressPaid Membership Plugin...5.4MEDIUMPHP Object Injection Vulnerability in RegistrationMagic Plugin for WordPress
CVE-2017-20208WordPressRegistrationmagic โ Cu...9.8CRITICALSQL Injection Vulnerability in RegistrationMagic Plugin for WordPress
CVE-2025-11204WordPressRegistrationmagic โ Cu...7.2HIGHSQL Injection Vulnerability in UsersWP Plugin for WordPress
CVE-2025-10003WordPressUsersWP โ Front-end Lo...6.5MEDIUMSQL Injection Vulnerability in User Registration & Membership Plugin for WordPress
CVE-2025-9085WordPressUser Registration & Me...4.9MEDIUMStored Cross-Site Scripting in UsersWP Plugin for WordPress
CVE-2025-9344WordPressUsersWP โ Front-end Lo...6.4MEDIUMArbitrary Shortcode Execution in ProfilePress Plugin for WordPress
CVE-2025-8878WordPressPaid Membership Plugin...6.5MEDIUMStored Cross-Site Scripting in User Registration Plugin for WordPress
CVE-2025-6831WordPressUser Registration & Me...6.4MEDIUMCross-Site Scripting Vulnerability in User Login History by Faiyaz Alam
CVE-2025-47676WordPressUser Login History6.5MEDIUMCross-site Scripting Vulnerability in Lehel Mรกtyus Legal Terms Popup for WooCommerce
CVE-2025-47592WordPressLegal Terms And Condit...5.9MEDIUM