Vulnerabilities > Usersultra

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-25	CVE-2022-0769	SQL Injection vulnerability in Usersultra Users Ultra The Users Ultra WordPress plugin through 3.1.0 fails to properly sanitize and escape the data_target parameter before it is being interpolated in an SQL statement and then executed via the rating_vote AJAX action (available to both unauthenticated and authenticated users), leading to an SQL Injection. network low complexity usersultra CWE-89 critical	9.8
2019-09-20	CVE-2015-9402	Unrestricted Upload of File with Dangerous Type vulnerability in Usersultra Users Ultra Membership The users-ultra plugin before 1.5.59 for WordPress has uultra-form-cvs-form-conf arbitrary file upload. network low complexity usersultra CWE-434	8.8
2019-09-20	CVE-2015-9395	SQL Injection vulnerability in Usersultra Users Ultra Membership 1.5.59/1.5.63 The users-ultra plugin before 1.5.64 for WordPress has SQL Injection via an ajax action. network low complexity usersultra CWE-89	8.8
2019-09-20	CVE-2015-9394	Cross-Site Request Forgery (CSRF) vulnerability in Usersultra Users Ultra Membership 1.5.59 The users-ultra plugin before 1.5.63 for WordPress has CSRF via action=package_add_new to wp-admin/admin-ajax.php. network low complexity usersultra CWE-352	8.8
2019-09-20	CVE-2015-9393	Cross-site Scripting vulnerability in Usersultra Users Ultra Membership 1.5.59 The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_desc parameter. network low complexity usersultra CWE-79	5.4
2019-09-20	CVE-2015-9392	Cross-site Scripting vulnerability in Usersultra Users Ultra Membership 1.5.59 The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_name parameter. network low complexity usersultra CWE-79	5.4

Vulnerabilities > Usersultra {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Usersultra"}]}

Vulnerabilities > Usersultra