WordPress User Meta Vulnerabilities

Wordpress User Meta vulnerabilities.

23 May 2025

19 May 2025

9 November 2024

16 October 2024

31 May 2023

22 May 2023

23 April 2023

6 June 2022

30 May 2022

13 December 2021

6 July 2021

22 August 2019

8 August 2019

12 December 2018

No more vulnerabilities to load.

WordPress User Meta Vulnerabilities

Vulnerability Published:

Sort By:

23 May 2025

Cross-site Scripting Vulnerability in Khaled User Meta Plugin

19 May 2025

Cross-Site Request Forgery Vulnerability in User Profile Meta Manager by Danny Vink

9 November 2024

Vulnerability in User Meta Plugin Allows Attackers to Obtain User Meta Values

16 October 2024

Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes

31 May 2023

Stored Cross-Site Scripting Vulnerability in Display Post Metadata Plugin for WordPress

22 May 2023

WordPress User Meta Manager Plugin <= 3.4.9 is vulnerable to Cross Site Request Forgery (CSRF)

23 April 2023

WordPress User Meta Manager Plugin <= 3.4.9 is vulnerable to Cross Site Scripting (XSS)

6 June 2022

User Meta < 2.4.4 - Subscriber+ Local File Enumeration via Path Traversal

30 May 2022

User Meta < 2.4.3 - Admin+ Stored Cross-Site Scripting

13 December 2021

User Meta Shortcodes <= 0.5 - Contributor+ Unauthorized Arbitrary User Metadata Access

6 July 2021

Export Users With Meta < 0.6.5 - Authenticated SQL Injection

22 August 2019

Directory Traversal Vulnerability in Import Users from CSV with Meta Plugin for WordPress

XSS Vulnerability in Import Users from CSV with Meta Plugin for WordPress

Cross-Site Scripting Vulnerability in Import Users from CSV with Meta Plugin for WordPress

CSRF Vulnerability in Import Users from CSV with Meta Plugin for WordPress

8 August 2019

Cross-Site Request Forgery Vulnerability in Import Users from CSV with Meta Plugin for WordPress

12 December 2018

Cross-Site Scripting Risk in Import Users from CSV with Meta Plugin for WordPress