Vulnerabilities in metagauss

106 results

CVE-2025-14507MEDIUMEventPrime - Events Calendar, Bookings and Tickets <= 4.2.7.0 - Unauthenticated Sensitive Information Exposure via REST APIEPSS 0.4%CVE-2026-24373HIGHWordPress RegistrationMagic plugin <= 6.0.7.1 - Account Takeover vulnerabilityEPSS 0.4%CVE-2023-51543MEDIUMWordPress RegistrationMagic plugin <= 5.2.5.0 - IP Limit Bypass vulnerabilityEPSS 0.4%CVE-2024-1320MEDIUMEventPrime – Events Calendar, Bookings and Tickets <= 3.4.3 - Unauthenticated Stored Cross-Site ScriptingEPSS 0.4%CVE-2025-11204HIGHRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login <= 6.0.6.2 - Authenticated (Administrator+) SQL InjectionEPSS 0.4%CVE-2024-9865MEDIUMEventPrime – Modern Events Calendar, Bookings and Tickets <= 4.0.4.7 - Unauthenticated Stored Cross-Site Scripting via Transaction LogEPSS 0.4%CVE-2023-23989MEDIUMWordPress RegistrationMagic plugin <= 5.1.9.2 - Content InjectionEPSS 0.4%CVE-2024-29776MEDIUMWordPress EventPrime plugin <= 3.3.9 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2024-6410MEDIUMProfileGrid <= 5.8.9 - Authenticated (Subscriber+) Insecure Direct Object ReferenceEPSS 0.4%CVE-2025-0723MEDIUMProfileGrid – User Profiles, Groups and Communities <= 5.9.4.7 - Authenticated (Subscriber+) SQL InjectionEPSS 0.4%CVE-2023-51509HIGHWordPress RegistrationMagic Plugin <= 5.2.4.1 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2024-5453MEDIUMProfileGrid <= 5.8.6 - Missing AuthorizationEPSS 0.4%CVE-2024-8369MEDIUMEventPrime <= 4.0.4.3 - Missing Authorization to Unauthenticated Private or Password-Protected Events DisclosureEPSS 0.3%CVE-2024-13741MEDIUMProfileGrid – User Profiles, Groups and Communities <= 5.9.4.2 - Authenticated (Subscriber+) Limited Server-Side Request ForgeryEPSS 0.3%CVE-2025-49876HIGHWordPress ProfileGrid plugin <= 5.9.5.2 - SQL Injection vulnerabilityEPSS 0.3%CVE-2024-33947HIGHWordPress RegistrationMagic plugin <= 5.3.2.0 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2025-25110MEDIUMWordPress Event Kikfyre plugin <= 2.1.8 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-51544MEDIUMWordPress RegistrationMagic plugin <= 5.2.5.0 - Form Submission Limit Bypass vulnerabilityEPSS 0.3%CVE-2025-47478HIGHWordPress ProfileGrid plugin <= 5.9.5.0 - SQL Injection VulnerabilityEPSS 0.3%CVE-2024-1125MEDIUMEventPrime – Events Calendar, Bookings and Tickets <= 3.4.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post DeletionEPSS 0.3%

← previouspage 3 / 6next →