GCVE - cpe:2.3:a:metagauss:registrationmagic:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:metagauss:registrationmagic:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Metagauss (`efd32a3a-6f1a-5c0a-ba62-c7bf604b79bd`)
Product	Registrationmagic (`5bd01b39-0855-50b7-943b-fcedfa874f86`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/wp-plugins/custom-registration-form-builder-with-submission-manager`	purl2cpe	2026-06-01 10:17:44.122538

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-32498`	vulnerable	2026-06-03 15:20:43.102200	db.gcve.eu details are currently unavailable. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-32385`	vulnerable	2026-06-03 15:20:42.920438	db.gcve.eu details are currently unavailable. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-24374`	vulnerable	2026-06-03 15:16:52.364098	WordPress RegistrationMagic plugin <= 6.0.6.9 - Cross Site Request Forgery (CSRF) vulnerability MEDIUM (5.4) Cross-Site Request Forgery (CSRF) vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Cross Site Request Forgery.This issue affects RegistrationMagic: from n/a through <= 6.0.6.9. Published: 2026-01-22T16:52:45.846Z Updated: 2026-04-28T16:14:47.968Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/custom-registration-form-builder-with-submission-manager/vulnerability/wordpress-registrationmagic-plugin-6-0-6-9-cross-site-request-forgery-csrf-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-24373`	vulnerable	2026-06-03 15:16:52.363729	WordPress RegistrationMagic plugin <= 6.0.7.1 - Account Takeover vulnerability HIGH (8.1) Incorrect Privilege Assignment vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Privilege Escalation.This issue affects RegistrationMagic: from n/a through <= 6.0.7.1. Published: 2026-03-25T16:14:32.185Z Updated: 2026-04-28T16:14:48.184Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/custom-registration-form-builder-with-submission-manager/vulnerability/wordpress-registrationmagic-plugin-6-0-7-1-account-takeover-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-24686`	vulnerable	2026-06-03 14:59:56.624711	WordPress RegistrationMagic Plugin <= 6.0.3.3 - Reflected Cross Site Scripting (XSS) vulnerability HIGH (7.1) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Reflected XSS.This issue affects RegistrationMagic: from n/a through <= 6.0.3.3. Published: 2025-01-31T08:24:41.266Z Updated: 2026-04-28T16:11:31.968Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/custom-registration-form-builder-with-submission-manager/vulnerability/wordpress-registrationmagic-plugin-6-0-3-3-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-33947`	vulnerable	2026-06-03 14:55:53.234750	WordPress RegistrationMagic plugin <= 5.3.2.0 - Cross Site Scripting (XSS) vulnerability HIGH (7.1) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Metagauss RegistrationMagic allows Reflected XSS.This issue affects RegistrationMagic: from n/a through 5.3.2.0. Published: 2024-05-03T06:53:37.984Z Updated: 2026-04-28T16:09:46.891Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/custom-registration-form-builder-with-submission-manager/wordpress-registrationmagic-plugin-5-3-2-0-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-2951`	vulnerable	2026-06-03 14:55:36.589319	WordPress RegistrationMagic plugin <= 5.3.0.0 - Cross Site Request Forgery (CSRF) vulnerability MEDIUM (4.3) Cross-Site Request Forgery (CSRF) vulnerability in Metagauss RegistrationMagic.This issue affects RegistrationMagic: from n/a through 5.3.0.0. Published: 2024-03-26T18:03:41.675Z Updated: 2026-04-28T16:09:17.933Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/custom-registration-form-builder-with-submission-manager/wordpress-registrationmagic-plugin-5-3-0-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-29113`	vulnerable	2026-06-03 14:55:26.869441	WordPress RegistrationMagic plugin <= 5.2.5.9 - Reflected Cross Site Scripting (XSS) vulnerability HIGH (7.1) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Metagauss RegistrationMagic allows Reflected XSS.This issue affects RegistrationMagic: from n/a through 5.2.5.9. Published: 2024-03-19T15:00:36.377Z Updated: 2026-04-28T16:09:16.985Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/custom-registration-form-builder-with-submission-manager/wordpress-registrationmagic-plugin-5-2-5-9-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-25935`	vulnerable	2026-06-03 14:55:14.295274	WordPress RegistrationMagic plugin <= 5.2.5.9 - Broken Access Control vulnerability MEDIUM (4.3) Missing Authorization vulnerability in Metagauss RegistrationMagic.This issue affects RegistrationMagic: from n/a through 5.2.5.9. Published: 2024-03-21T17:31:23.173Z Updated: 2026-04-28T16:09:13.993Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/custom-registration-form-builder-with-submission-manager/wordpress-registrationmagic-plugin-5-2-5-9-broken-access-control-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-51544`	vulnerable	2026-06-03 14:53:38.004590	WordPress RegistrationMagic plugin <= 5.2.5.0 - Form Submission Limit Bypass vulnerability MEDIUM (5.3) Improper Control of Interaction Frequency vulnerability in Metagauss RegistrationMagic allows Functionality Misuse.This issue affects RegistrationMagic: from n/a through 5.2.5.0. Published: 2024-06-04T12:27:32.353Z Updated: 2026-04-28T16:09:04.283Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/custom-registration-form-builder-with-submission-manager/wordpress-registrationmagic-plugin-5-2-5-0-form-submission-limit-bypass-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-51543`	vulnerable	2026-06-03 14:53:38.002171	WordPress RegistrationMagic plugin <= 5.2.5.0 - IP Limit Bypass vulnerability MEDIUM (5.3) Authentication Bypass by Spoofing vulnerability in Metagauss RegistrationMagic allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects RegistrationMagic: from n/a through 5.2.5.0. Published: 2024-06-04T12:25:25.664Z Updated: 2026-04-28T16:09:04.267Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/custom-registration-form-builder-with-submission-manager/wordpress-registrationmagic-plugin-5-2-5-0-ip-limit-bypass-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-49831`	vulnerable	2026-06-03 14:53:26.531049	WordPress RegistrationMagic plugin <= 5.2.3.0 - Broken Access Control vulnerability HIGH (7.5) Missing Authorization vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RegistrationMagic: from n/a through <= 5.2.3.0. Published: 2024-12-09T11:30:09.329Z Updated: 2026-04-29T09:51:52.384Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/custom-registration-form-builder-with-submission-manager/vulnerability/wordpress-registrationmagic-plugin-5-2-3-0-broken-access-control-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-23989`	vulnerable	2026-06-03 14:49:29.195526	WordPress RegistrationMagic plugin <= 5.1.9.2 - Content Injection MEDIUM (5.3) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Metagauss RegistrationMagic.This issue affects RegistrationMagic: from n/a through 5.1.9.2. Published: 2024-04-24T14:41:06.971Z Updated: 2026-04-28T16:08:04.864Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/custom-registration-form-builder-with-submission-manager/wordpress-registrationmagic-custom-registration-forms-user-registration-and-user-login-plugin-plugin-5-1-9-2-content-injection?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-23976`	vulnerable	2026-06-03 14:49:29.163333	WordPress RegistrationMagic plugin <= 5.1.9.2 - Arbitrary Price Change HIGH (7.5) Incorrect Default Permissions vulnerability in Metagauss RegistrationMagic allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects RegistrationMagic: from n/a through 5.1.9.2. Published: 2024-04-24T10:48:46.155Z Updated: 2026-04-28T16:08:04.193Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/custom-registration-form-builder-with-submission-manager/wordpress-registrationmagic-custom-registration-forms-user-registration-and-user-login-plugin-plugin-5-1-9-2-arbitrary-price-change?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.