Simple User Registration CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor N-media Subscriptions

Filtered by product Simple User Registration Subscriptions

Search

Switch to Advanced Search (Beta)

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-53428	2 N-media, Wordpress	2 Simple User Registration, Wordpress	2025-12-02	8.8 High
Incorrect Privilege Assignment vulnerability in N-Media Simple User Registration wp-registration allows Privilege Escalation.This issue affects Simple User Registration: from n/a through <= 6.4.
CVE-2025-12160	2 N-media, Wordpress	2 Simple User Registration, Wordpress	2025-11-24	7.2 High
The Simple User Registration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wpr_admin_msg' parameter in all versions up to, and including, 6.6 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
CVE-2024-53810	1 N-media	1 Simple User Registration	2024-12-06	9.1 Critical
Missing Authorization vulnerability in Najeeb Ahmad Simple User Registration allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Simple User Registration: from n/a through 5.5.

Page 1 of 1.