Vulnerabilidades em metagauss

106 resultados

CVE-2024-31275HIGHWordPress EventPrime plugin <= 3.3.4 - Booking Price Manipulation vulnerabilityEPSS 0.5%CVE-2024-32774MEDIUMWordPress ProfileGrid plugin <= 5.8.2 - Group Members Limit Bypass vulnerabilityEPSS 0.5%CVE-2023-3403MEDIUMProfileGrid <= 5.5.1 - Missing Authorization to User ImportEPSS 0.5%CVE-2024-10900MEDIUMProfileGrid – User Profiles, Groups and Communities <= 5.9.3.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Meta DeletionEPSS 0.5%CVE-2025-15403CRITICALRegistrationMagic <= 6.0.7.1 - Unauthenticated Privilege Escalation via admin_orderEPSS 0.5%CVE-2023-23976HIGHWordPress RegistrationMagic plugin <= 5.1.9.2 - Arbitrary Price ChangeEPSS 0.5%CVE-2024-30513MEDIUMWordPress ProfileGrid plugin <= 5.7.2 - Insecure Direct Object References (IDOR) vulnerabilityEPSS 0.5%CVE-2024-3606MEDIUMProfileGrid – User Profiles, Memberships, Groups and Communities <= 5.8.3 - Missing AuthorizationEPSS 0.5%CVE-2024-32808MEDIUMWordPress ProfileGrid plugin <= 5.7.9 - Insecure Direct Object Reference (IDOR) vulnerabilityEPSS 0.4%CVE-2024-32772MEDIUMWordPress ProfileGrid plugin <= 5.7.9 - Insecure Direct Object References (IDOR) vulnerabilityEPSS 0.4%CVE-2024-1126MEDIUMEventPrime – Events Calendar, Bookings and Tickets <= 3.4.2 - Missing Authorization to Authenticated (Subscriber+) Attendee List RetrievalEPSS 0.4%CVE-2024-24832HIGHWordPress EventPrime plugin <= 3.3.9 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-29113HIGHWordPress RegistrationMagic plugin <= 5.2.5.9 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2024-1123MEDIUMEventPrime – Events Calendar, Bookings and Tickets <= 3.4.2 - Missing Authorization to Arbitrary Post OverwriteEPSS 0.4%CVE-2024-9829MEDIUMDownload Plugin <= 2.2.0 - Missing Authorization to Authenticated (Subscriber+) User Metadata and Comment DownloadEPSS 0.4%CVE-2024-25935MEDIUMWordPress RegistrationMagic plugin <= 5.2.5.9 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2026-49764CRITICALWordPress RegistrationMagic plugin <= 6.0.8.6 - Broken Authentication vulnerabilityEPSS 0.4%CVE-2024-12024HIGHEventPrime – Events Calendar, Bookings and Tickets <= 4.0.7.3 - Unauthenticated Stored Cross-Site Scripting via Ticket Category and Ticket Type NameEPSS 0.4%CVE-2026-1657MEDIUMEventPrime <= 4.2.8.4 - Missing Authorization to Unauthenticated Image Upload via 'ep_upload_file_media' AJAX EndpointEPSS 0.4%CVE-2024-31291MEDIUMWordPress ProfileGrid plugin <= 5.7.6 - IDOR on Friend Request vulnerabilityEPSS 0.4%

← anteriorpágina 2 / 6próxima →