WordPress Wp User Profile Avatar Vulnerabilities
Wordpress Wp User Profile Avatar vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Missing Authorization in WP User Profile Avatar by WordPress
CVE-2025-49980WordPressWP User Profile Avatar4.3MEDIUMCross-Site Request Forgery in WP User Profile Avatar Plugin for WordPress
CVE-2024-10789WordpressWP User Profile Avatar4.3MEDIUMWP User Profile Avatar <= 1.0.1 - Contributor+ Stored XSS
CVE-2023-6067WordpressWP User Profile AvatarπΎπ‘WordPress WP User Profile Avatar Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-52118WordPressWP User Profile Avatar6.5MEDIUMWP User Profile Avatar < 1.0.1 - Author+ Avatar Deletion/Update via IDOR
CVE-2023-6384WordpressWP User Profile AvatarπΎπ‘4.3MEDIUMProfilePress < 3.2.3 - Reflected Cross-Site Scripting
CVE-2021-24955WordpressUser Registration, Log...6.1MEDIUMProfilePress < 3.2.3 - Reflected Cross-Site Scripting
CVE-2021-24954WordpressUser Registration, Log...6.1MEDIUMProfilePress < 3.1.11 - Unauthenticated Cross-Site Scripting (XSS) in tabbed login/register widget
CVE-2021-24522WordpressUser Registration, Use...6.1MEDIUMProfilePress < 3.1.8 - Authenticated Stored XSS
CVE-2021-24450WordpressUser Registration, Use...4.8MEDIUM
20 June 2025
16 January 2025
15 April 2024
1 February 2024
22 January 2024
13 December 2021
9 August 2021
2 August 2021
No more vulnerabilities to load.