Shodan
Vulnerabilities
Vulnerable Software
Metagauss:  Security Vulnerabilities
CVE-2020-9457
The RegistrationMagic plugin through 4.6.0.3 for WordPress allows remote authenticated users (with minimal privileges) to import custom vulnerable forms and change form settings via class_rm_form_settings_controller.php, resulting in privilege escalation.
CVSS Score
8.8
EPSS Score
0.008
Published
2020-03-06
CVE-2020-9458
In the RegistrationMagic plugin through 4.6.0.3 for WordPress, the export function allows remote authenticated users (with minimal privileges) to export submitted form data and settings via class_rm_form_controller.php rm_form_export.
CVSS Score
8.8
EPSS Score
0.02
Published
2020-03-06
CVE-2019-15873
The profilegrid-user-profiles-groups-and-communities plugin before 2.8.6 for WordPress has remote code execution via an wp-admin/admin-ajax.php request with the action=pm_template_preview&html=<?php substring followed by PHP code.
CVSS Score
8.8
EPSS Score
0.1
Published
2019-09-03


Products
Pricing
Contact Us

Shodan ® - All rights reserved