CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Metagauss: >> Registrationmagic Security Vulnerabilities

CVE-2020-9456

In the RegistrationMagic plugin through 4.6.0.3 for WordPress, the user controller allows remote authenticated users (with minimal privileges) to elevate their privileges to administrator via class_rm_user_controller.php rm_user_edit.

CVSS Score

8.8

EPSS Score

0.02

Published

2020-03-06

CVE-2020-9457

The RegistrationMagic plugin through 4.6.0.3 for WordPress allows remote authenticated users (with minimal privileges) to import custom vulnerable forms and change form settings via class_rm_form_settings_controller.php, resulting in privilege escalation.

CVSS Score

8.8

EPSS Score

0.008

Published

2020-03-06

CVE-2020-9458

In the RegistrationMagic plugin through 4.6.0.3 for WordPress, the export function allows remote authenticated users (with minimal privileges) to export submitted form data and settings via class_rm_form_controller.php rm_form_export.

CVSS Score

8.8

EPSS Score

0.02

Published

2020-03-06

Prev

Page 4

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved