Known Vulnerabilities for Profilepress by Profilepress
Listed below are 7 of the newest known vulnerabilities associated with "Profilepress" by "Profilepress".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-41556 json | Subscriber Cross Site Scripting (XSS) in ProfilePress <= 4.16.13 versions. | Not Provided | 2026-06-15 | 2026-06-15 |
| CVE-2026-13352 json | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress p... | Not Provided | 2026-07-17 | 2026-07-17 |
| CVE-2023-50882 json | Missing Authorization vulnerability in properfraction ProfilePress wp-user-avatar allows Exploiting Incorrectly Configured Ac... | Not Provided | 2024-12-09 | 2026-04-29 |
| CVE-2023-44150 json | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ProfilePress Membership Team Paid Membership Plug... | Not Provided | 2023-11-30 | 2026-04-28 |
| CVE-2023-23830 json | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ProfilePress Membership Team ProfilePress plugin <= 4.5.4 vers... | 6.1 - MEDIUM | 2023-05-03 | 2023-05-27 |
| CVE-2022-45083 json | Deserialization of Untrusted Data vulnerability in ProfilePress Membership Team Paid Membership Plugin, Ecommerce, User Regis... | 6.1 - MEDIUM | 2024-01-19 | 2026-04-28 |
| CVE-2021-34624 json | A vulnerability in the file uploader component found in the ~/src/Classes/FileUploader.php file of the ProfilePress WordPress... | 9.8 - CRITICAL | 2021-07-07 | 2023-05-26 |
| CVE-2021-34623 json | A vulnerability in the image uploader component found in the ~/src/Classes/ImageUploader.php file of the ProfilePress WordPre... | 9.8 - CRITICAL | 2021-07-07 | 2023-05-26 |
| CVE-2021-34622 json | A vulnerability in the user profile update component found in the ~/src/Classes/EditUserProfile.php file of the ProfilePress ... | 8.8 - HIGH | 2021-07-07 | 2023-05-26 |
| CVE-2021-34621 json | A vulnerability in the user registration component found in the ~/src/Classes/RegistrationAuth.php file of the ProfilePress W... | 9.8 - CRITICAL | 2021-07-07 | 2023-05-26 |