WordPress Profilepress Vulnerabilities
Wordpress Profilepress vulnerabilities.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Insecure Direct Object Reference in ProfilePress Plugin by WordPress
CVE-2026-3453WordPressPaid Membership Plugin...8.1HIGHArbitrary Shortcode Execution in ProfilePress Plugin for WordPress
CVE-2025-13642WordPressPaid Membership Plugin...5.4MEDIUMArbitrary Shortcode Execution in ProfilePress Plugin for WordPress
CVE-2025-8878WordPressPaid Membership Plugin...6.5MEDIUMProfilePress Membership Team ProfilePress Vulnerable to Missing Authorization
CVE-2023-41953WordPressProfilepress5.3MEDIUMWordPress ProfilePress plugin <= 4.13.2 - Broken Access Control vulnerability
CVE-2023-50882WordPressProfilepress5.3MEDIUMUnauthenticated Attackers Can Extract Sensitive Data via WordPress Core Search
CVE-2024-11083WordPressPaid Membership Plugin...5.3MEDIUMAuthenticatiom Bypass Vulnerability in ProfilePress Pro Plugin for WordPress
CVE-2024-9947WordPressProfilepress Pro8.1HIGHStored Cross-Site Scripting Vulnerability in ProfilePress Plugin
CVE-2024-2861WordPressPaid Membership Plugin...6.4MEDIUMPrivilege Escalation Vulnerability Affects ProfilePress Membership Team ProfilePress
CVE-2023-41954WordPressProfilepressEPSS 16%8.6HIGHStored Cross-Site Scripting in ProfilePress by WPExperts
CVE-2024-2867WordPressPaid Membership Plugin...6.4MEDIUMStored Cross-Site Scripting Vulnerability in ProfilePress Ecommerce Plugin
CVE-2024-3210WordPressPaid Membership Plugin...6.4MEDIUMStored Cross-Site Scripting Vulnerability in ProfilePress Plugin
CVE-2024-1806WordPressPaid Membership Plugin...6.4MEDIUMStored Cross-Site Scripting in Paid Membership Plugin for WordPress by ProfilePress
CVE-2024-1409WordPressPaid Membership Plugin...6.4MEDIUMStored Cross-Site Scripting Vulnerability in ProfilePress Plugin for WordPress
CVE-2024-1535WordPressPaid Membership Plugin...6.4MEDIUMStored Cross-Site Scripting Vulnerability in ProfilePress Ecommerce Plugin
CVE-2024-1408WordPressPaid Membership Plugin...6.4MEDIUMStored Cross-Site Scripting Vulnerability in ProfilePress Paid Membership Plugin
CVE-2024-1519WordPressPaid Membership Plugin...6.5MEDIUMStored Cross-Site Scripting Vulnerability in ProfilePress Plugin
CVE-2024-1570WordPressPaid Membership Plugin...6.4MEDIUMStored Cross-Site Scripting Vulnerability in ProfilePress Ecommerce Plugin
CVE-2024-1046WordPressPaid Membership Plugin...6.4MEDIUMWordPress ProfilePress Plugin <= 4.3.2 is vulnerable to PHP Object Injection
CVE-2022-45083WordPressPaid Membership Plugin...6.6MEDIUMWordPress ProfilePress Plugin <= 4.13.2 is vulnerable to Sensitive Data Exposure
CVE-2023-44150WordPressPaid Membership Plugin...7.5HIGHWordPress ProfilePress Plugin <= 4.5.4 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-23830WordPressProfilePress6.1MEDIUMWordPress ProfilePress Plugin <= 4.5.4 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-23820WordPressProfilePress5.4MEDIUMWordPress ProfilePress Plugin <= 4.5.3 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-23996WordPressProfilePress4.8MEDIUMWordPress ProfilePress Plugin <= 4.4.1 is vulnerable to Cross Site Scripting (XSS)
CVE-2022-47444WordPressPaid Membership Plugin...7.1HIGHStored Cross-Site Scripting in ProfilePress Plugin for WordPress
CVE-2022-4697WordPressPaid Membership, Ecomm...5.5MEDIUM