Known Vulnerabilities for products from Userproplugin
Listed below are 4 of the newest known vulnerabilities associated with the vendor "Userproplugin".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-35700 | Incorrect Privilege Assignment vulnerability in DeluxeThemes Userpro userpro.This issue affects Userpro: from n/a through <= ... | Not Provided | 2024-06-04 | 2026-04-01 |
| CVE-2019-14470 | cosenary Instagram-PHP-API (aka Instagram PHP API V2), as used in the UserPro plugin through 4.9.32 for WordPress, has XSS vi... | 6.1 - MEDIUM | 2019-09-04 | 2019-09-05 |
| CVE-2018-16285 | The UserPro plugin through 4.9.23 for WordPress allows XSS via the shortcode parameter in a userpro_shortcode_template action... | 6.1 - MEDIUM | 2018-09-06 | 2018-11-02 |
| CVE-2017-16562 | The UserPro plugin before 4.9.17.1 for WordPress, when used on a site with the "admin" username, allows remote attackers to b... | 9.8 - CRITICAL | 2017-11-10 | 2019-10-03 |