Filter
Software
Metagauss EventprimeEventPrime – Events Calendar, Bookings and Tickets <= 4.0.5.3 - Unauthenticated Stored Cross-Site Scripting via Ticket Category and Ticket Type Name
7.2
First published (updated )
Metagauss ProfilegridProfileGrid – User Profiles, Groups and Communities <= 5.9.3.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Meta Deletion
8.1
First published (updated )
Metagauss Download PluginDownload Plugin <= 2.2.0 - Missing Authorization to Authenticated (Subscriber+) User Metadata and Comment Download
6.5
EPSS
0.06%
First published (updated )
Metagauss ProfilegridWordPress ProfileGrid plugin <= 5.9.3 - Cross Site Request Forgery (CSRF) vulnerability
6.5
First published (updated )
Metagauss ProfilegridProfileGrid – User Profiles, Groups and Communities <= 5.9.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
EPSS
0.05%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Metagauss EventprimeEventPrime <= 4.0.4.3 - Missing Authorization to Unauthenticated Private or Password-Protected Events Disclosure
5.3
EPSS
0.05%
First published (updated )
Metagauss RegistrationmagicWordPress RegistrationMagic plugin <= 6.0.0.1 - Cross Site Scripting (XSS) vulnerability
6.1
First published (updated )
Metagauss ProfilegridWordPress ProfileGrid plugin <= 5.6.6 - Broken Access Control vulnerability
6.3
First published (updated )
Metagauss EventprimeWordPress EventPrime plugin <= 3.3.4 - Booking Price Manipulation vulnerability
9.8
First published (updated )
Metagauss ProfilegridProfileGrid <= 5.8.6 - Missing Authorization
4.3
EPSS
0.05%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Metagauss RegistrationmagicWordPress RegistrationMagic Plugin <= 5.2.4.1 is vulnerable to Cross Site Scripting (XSS)
7.1
EPSS
0.05%
First published (updated )
Metagauss EventprimeEventPrime < 3.3.6 - Unauthenticated Event Access
5.3
First published (updated )
Metagauss ProfilegridWordPress ProfileGrid Plugin <= 5.0.3 is vulnerable to Broken Access Control
8.8
First published (updated )
Metagauss RegistrationmagicWordPress RegistrationMagic Plugin <= 5.2.4.5 is vulnerable to SQL Injection
7.6
First published (updated )
Metagauss RegistrationmagicWordPress RegistrationMagic Plugin <= 5.2.2.6 is vulnerable to Cross Site Request Forgery (CSRF)
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Metagauss EventprimeEventPrime <= 3.2.9 - Booking Pricing Bypass
5.3
First published (updated )
Metagauss ProfilegridWordPress ProfileGrid Plugin <= 5.6.6 is vulnerable to Cross Site Request Forgery (CSRF)
8.8
First published (updated )
CVE-2023-4251EventPrime < 3.2.0 - Booking Creation via CSRF
4.3
First published (updated )
CVE-2023-5519EventPrime < 3.2.0 - Booking Creation via CSRF
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-5238EventPrime < 3.2.0 - Reflected HTML Injection on keyword parameter
6.1
First published (updated )
Metagauss EventprimeWordPress EventPrime Plugin <= 3.1.5 is vulnerable to Cross Site Scripting (XSS)
7.1
First published (updated )
Metagauss ProfilegridThe ProfileGrid plugin for WordPress is vulnerable to unauthorized decryption of private information…
4.9
First published (updated )
Metagauss ProfilegridThe ProfileGrid plugin for WordPress is vulnerable to unauthorized modification of data due to a mis…
5.4
First published (updated )
Metagauss ProfilegridThe ProfileGrid plugin for WordPress is vulnerable to unauthorized modification of data due to a mis…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Metagauss ProfilegridThe ProfileGrid plugin for WordPress is vulnerable to unauthorized modification of data due to a mis…
8.8
First published (updated )
Metagauss Download ThemeWordPress Download Theme Plugin <= 1.0.9 is vulnerable to Cross Site Request Forgery (CSRF)
8.8
First published (updated )
Metagauss EventprimeWordPress EventPrime Plugin <= 3.0.5 is vulnerable to Cross Site Scripting (XSS)
7.1
First published (updated )
Metagauss Download PluginWordPress Download Plugin Plugin <= 2.0.4 is vulnerable to Cross Site Request Forgery (CSRF)
8.8
First published (updated )
Metagauss EventprimeWordPress EventPrime Plugin <= 2.8.6 is vulnerable to Cross Site Scripting (XSS)
7.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.