Metagauss: >> Registrationmagic >> 4.6.0.4 Security Vulnerabilities
The RegistrationMagic plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 5.2.0.5. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it possible for authenticated attackers, with administrator-level permissions and above, to change user passwords and potentially take over super-administrator accounts in multisite setup.
CVSS Score
6.6
EPSS Score
0.0
Published
2023-05-16
Cross-Site Request Forgery (CSRF) vulnerability in RegistrationMagic pluginĀ <= 5.1.9.2 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-03-13
The RegistrationMagic WordPress plugin before 5.0.2.2 does not sanitise and escape the rm_form_id parameter before using it in a SQL statement in the Automation admin dashboard, allowing high privilege users to perform SQL injection attacks
CVSS Score
7.2
EPSS Score
0.007
Published
2022-03-07
The RegistrationMagic WordPress plugin before 5.0.1.9 does not sanitise and escape the rm_search_value parameter before outputting back in an attribute, leading to a Reflected Cross-Site Scripting
CVSS Score
6.1
EPSS Score
0.002
Published
2022-02-01
The RegistrationMagic WordPress plugin before 5.0.1.6 does not escape user input in its rm_chronos_ajax AJAX action before using it in a SQL statement when duplicating tasks in batches, which could lead to a SQL injection issue
CVSS Score
7.2
EPSS Score
0.364
Published
2022-01-10
The RegistrationMagic WordPress plugin made it possible for unauthenticated users to log in as any site user, including administrators, if they knew a valid username on the site due to missing identity validation in the social login function social_login_using_email() of the plugin. This affects versions equal to, and less than, 5.0.1.7.
CVSS Score
9.8
EPSS Score
0.025
Published
2021-12-14
Page 3