WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Talk to sales
WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Talk to sales
WordPress Plugin Vulnerabilities
WP User Frontend – Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submission Plugin
2022-10-31
WP User Frontend < 3.5.29 - Obscure Registration as Admin
Fixed in version 3.5.29
2021-12-27
WP User Frontend < 3.5.26 - SQL Injection to Reflected Cross-Site Scripting
Fixed in version 3.5.26
2021-11-18
WP User Frontend < 3.5.25 - Admin+ SQL Injection
Fixed in version 3.5.25
2016-02-08
WP User Frontend <= 2.3.10 - Unrestricted File Upload
Fixed in version 2.3.11
Fixed in version 3.5.26Fixed in version 3.5.26