User Registration
Approved changes feed: RSS · Atom
cpe:2.3:a:wpeverest:user_registration:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Wpeverest (893868fd-7465-5174-8b2f-d1079aaa15d0) |
|---|---|
| Product | User Registration (2bb64de2-ffd5-591a-9862-99d8cb309736) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-42652 |
vulnerable | 2026-06-03 15:25:01.439334 |
WordPress User Registration plugin <= 5.1.5 - Cross Site Scripting (XSS) vulnerability
HIGH (7.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpeverest User Registration user-registration allows Reflected XSS.This issue affects User Registration: from n/a through <= 5.1.5.
Published: 2026-04-29T10:40:45.853Z
Updated: 2026-05-12T11:03:21.812Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-32488 |
vulnerable | 2026-06-03 15:20:43.088405 |
WordPress User Registration plugin <= 4.4.9 - Privilege Escalation vulnerability
HIGH (8.1)
Incorrect Privilege Assignment vulnerability in wpeverest User Registration user-registration allows Privilege Escalation.This issue affects User Registration: from n/a through <= 4.4.9.
Published: 2026-03-25T16:14:58.228Z
Updated: 2026-04-29T09:52:00.524Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-24353 |
vulnerable | 2026-06-03 15:16:52.326867 |
WordPress User Registration plugin <= 4.4.9 - Arbitrary Shortcode Execution vulnerability
MEDIUM (4.3)
Missing Authorization vulnerability in wpeverest User Registration user-registration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Registration: from n/a through <= 4.4.9.
Published: 2026-01-22T16:52:43.122Z
Updated: 2026-04-28T16:14:47.666Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-67956 |
vulnerable | 2026-06-03 15:11:02.572318 |
WordPress User Registration plugin <= 4.4.6 - Broken Access Control vulnerability
HIGH (8.2)
Missing Authorization vulnerability in wpeverest User Registration user-registration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Registration: from n/a through <= 4.4.6.
Published: 2026-01-22T16:51:56.303Z
Updated: 2026-04-29T09:51:55.997Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-39400 |
vulnerable | 2026-06-03 15:01:02.263994 |
WordPress User Registration plugin < 4.2.0 - Reflected Cross Site Scripting (XSS) vulnerability
HIGH (7.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpeverest User Registration user-registration allows Reflected XSS.This issue affects User Registration: from n/a through < 4.2.0.
Published: 2025-04-24T16:08:32.039Z
Updated: 2026-04-28T16:12:30.146Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30899 |
vulnerable | 2026-06-03 15:00:29.802236 |
WordPress User Registration plugin <= 4.0.3 - Cross Site Scripting (XSS) vulnerability
MEDIUM (5.9)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpeverest User Registration user-registration allows Stored XSS.This issue affects User Registration: from n/a through <= 4.0.3.
Published: 2025-03-27T10:55:49.603Z
Updated: 2026-04-28T16:11:59.970Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-29429 |
vulnerable | 2026-06-03 14:51:40.953791 |
WordPress User Registration plugin <= 2.3.2.1 - Broken Access Control vulnerability
MEDIUM (5.3)
Missing Authorization vulnerability in WPEverest User Registration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Registration: from n/a through 2.3.2.1.
Published: 2024-12-09T11:31:09.569Z
Updated: 2026-04-28T16:08:17.817Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-27459 |
vulnerable | 2026-06-03 14:51:01.907041 |
WordPress User Registration plugin <= 2.3.2.1 - Authenticated PHP Object Injection vulnerability
HIGH (7.4)
Deserialization of Untrusted Data vulnerability in WPEverest User Registration.This issue affects User Registration: from n/a through 2.3.2.1.
Published: 2024-03-26T20:01:36.479Z
Updated: 2026-04-28T16:08:14.219Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-23987 |
vulnerable | 2026-06-03 14:49:29.193449 |
WordPress User Registration Plugin <= 2.3.0 is vulnerable to Cross Site Scripting (XSS)
MEDIUM (5.9)
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPEverest User Registration plugin <= 2.3.0 versions.
Published: 2023-04-06T05:22:56.281Z
Updated: 2026-04-28T16:08:04.892Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.