Vulnerabilities > Cozmoslabs > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-14 | CVE-2024-12919 | Unspecified vulnerability in Cozmoslabs Membership & Content Restriction - Paid Member Subscriptions The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 2.13.7. | 9.8 |
| 2021-08-16 | CVE-2021-24527 | Unspecified vulnerability in Cozmoslabs Profile Builder The User Registration & User Profile – Profile Builder WordPress plugin before 3.4.9 has a bug allowing any user to reset the password of the admin of the blog, and gain unauthorised access, due to a bypass in the way the reset key is checked. | 9.8 |