Vulnerabilidades en Metagauss

106 resultados

CVE-2024-47648MEDIUMWordPress EventPrime plugin <= 4.0.4.5 - Open Redirection vulnerabilityEPSS 0.3%CVE-2025-49033HIGHWordPress ProfileGrid plugin <= 5.9.5.3 - SQL Injection vulnerabilityEPSS 0.2%CVE-2026-25389MEDIUMWordPress EventPrime plugin <= 4.2.8.3 - Sensitive Data Exposure vulnerabilityEPSS 0.2%CVE-2025-24686HIGHWordPress RegistrationMagic Plugin <= 6.0.3.3 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2026-4607MEDIUMProfileGrid <= 5.9.8.4 - Missing Authorization to Authenticated (Subscriber+) Group Settings ModificationEPSS 0.2%CVE-2026-1054MEDIUMRegistrationMagic <= 6.0.7.4 - Missing Authorization to Unauthenticated Arbitrary Settings ModificationEPSS 0.2%CVE-2024-31362MEDIUMWordPress ProfileGrid – User Profiles, Memberships, Groups and Communities plugin <= 5.7.8 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-4957HIGHWordPress ProfileGrid plugin <= 5.9.5.7 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2026-2488MEDIUMProfileGrid <= 5.9.8.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Message DeletionEPSS 0.2%CVE-2026-4609HIGHProfileGrid <= 5.9.8.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Group JoiningEPSS 0.2%CVE-2024-2951MEDIUMWordPress RegistrationMagic plugin <= 5.3.0.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2026-32385MEDIUMWordPress RegistrationMagic plugin <= 6.0.7.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-14444MEDIUMRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login <= 6.0.6.9 - Unauthenticated Payment Bypass via rm_process_paypal_sdk_paymentEPSS 0.2%CVE-2025-63007MEDIUMWordPress EventPrime plugin <= 4.2.4.1 - Sensitive Data Exposure vulnerabilityEPSS 0.2%CVE-2025-52719MEDIUMWordPress ProfileGrid plugin <= 5.9.5.2 - Full Path Disclosure (FPD) VulnerabilityEPSS 0.2%CVE-2026-25312HIGHWordPress EventPrime plugin <= 4.2.8.3 - Payment Bypass vulnerabilityEPSS 0.2%CVE-2026-4610MEDIUMProfileGrid <= 5.9.9.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting via Message ContentEPSS 0.2%CVE-2025-48079MEDIUMWordPress ProfileGrid plugin <= 5.9.5.1 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-12498MEDIUMEventPrime – Events Calendar, Bookings and Tickets <= 4.2.0.0 - Missing Authorization to Authenticated (Subscriber+) Booking Note CreationEPSS 0.2%CVE-2026-24380MEDIUMWordPress EventPrime plugin <= 4.2.8.0 - Broken Access Control vulnerabilityEPSS 0.2%

← anteriorpágina 5 / 6siguiente →