Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress
wp-user-avatar
Vulnerabilities:
36
Last Updated:
December 2, 2025
Active Installs:
100000
Published
Title
Fixed in
CVSS
Published
2025-12-08
Fixed in
Fixed in 4.16.8
CVSS
5.4 (medium)
Published
2025-08-15
Fixed in
Fixed in 4.16.5
CVSS
6.5 (medium)
Published
2025-01-23
Fixed in
Fixed in 4.15.20
CVSS
3.5 (low)
Published
2025-01-23
Fixed in
Fixed in 4.15.20
CVSS
3.5 (low)
Published
2025-01-23
Fixed in
Fixed in 4.15.20
CVSS
3.5 (low)
Published
2024-11-26
Fixed in
Fixed in 4.15.19
CVSS
5.3 (medium)
Published
2024-11-21
Fixed in
Fixed in 4.15.15
CVSS
3.5 (low)
Published
2024-11-21
Fixed in
Fixed in 4.15.15
CVSS
3.5 (low)
Published
2024-05-22
Fixed in
Fixed in 4.15.9
CVSS
5.9 (medium)
Published
2024-04-11
Fixed in
Fixed in 4.15.5
CVSS
6.4 (medium)
Published
2024-04-09
Fixed in
Fixed in 4.15.6
CVSS
6.4 (medium)
Published
2024-03-12
Fixed in
Fixed in 4.15.3
CVSS
6.4 (medium)
Published
2024-02-23
Fixed in
Fixed in 4.15.1
CVSS
6.4 (medium)
Published
2024-02-22
Fixed in
Fixed in 4.15.1
CVSS
6.4 (medium)
Published
2024-02-19
Fixed in
Fixed in 4.15.0
CVSS
5.9 (medium)
Published
2024-02-19
Fixed in
Fixed in 4.15.0
CVSS
5.0 (medium)
Published
2024-02-19
Fixed in
Fixed in 4.15.0
CVSS
5.9 (medium)
Published
2024-02-01
Fixed in
Fixed in 4.14.4
CVSS
5.9 (medium)
Published
2023-10-02
Fixed in
Fixed in 4.13.3
CVSS
5.3 (medium)
Published
2023-09-09
Fixed in
Fixed in 4.13.2
CVSS
7.3 (high)
Published
2023-09-09
Fixed in
Fixed in 4.13.2
CVSS
4.3 (medium)
Published
2023-02-21
Fixed in
Fixed in 4.5.5
CVSS
7.5 (high)
Published
2023-02-21
Fixed in
Fixed in 4.5.5
CVSS
7.1 (high)
Published
2023-02-20
Fixed in
Fixed in 4.5.5
CVSS
6.8 (medium)
Published
2023-01-20
Fixed in
Fixed in 4.5.4
CVSS
3.5 (low)
Published
2022-12-23
Fixed in
Fixed in 4.5.1
CVSS
3.4 (low)
Published
2022-12-23
Fixed in
Fixed in 4.5.1
CVSS
3.4 (low)
Published
2021-11-15
Fixed in
Fixed in 3.2.3
CVSS
6.1 (medium)
Published
2021-11-15
Fixed in
Fixed in 3.2.3
CVSS
8.8 (high)
Published
2021-08-09
Title
ProfilePress < 3.1.11 - Unauthenticated Cross-Site Scripting (XSS) in tabbed login/register widget
Fixed in
Fixed in 3.1.11
CVSS
5.4 (medium)
Published
2021-07-10
Fixed in
Fixed in 3.1.11
CVSS
n/a
Published
2021-06-28
Fixed in
Fixed in 3.1.8
CVSS
4.8 (medium)
Published
2021-06-28
Fixed in
Fixed in 3.1.4
CVSS
9.8 (critical)
Published
2021-06-28
Fixed in
Fixed in 3.1.4
CVSS
9.8 (critical)
Published
2021-06-28
Fixed in
Fixed in 3.1.4
CVSS
9.8 (critical)
Published
2021-06-28
Fixed in
Fixed in 3.1.4
CVSS
9.8 (critical)
WPScan 