Vulnerabilities > Wpusermanager
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-26 | CVE-2024-43336 | Cross-Site Request Forgery (CSRF) vulnerability in Wpusermanager WP User Manager Cross-Site Request Forgery (CSRF) vulnerability in WP User Manager.This issue affects WP User Manager: from n/a through 2.9.10. | 4.3 |
| 2022-07-17 | CVE-2021-24655 | Authorization Bypass Through User-Controlled Key vulnerability in Wpusermanager WP User Manager The WP User Manager WordPress plugin before 2.6.3 does not ensure that the user ID to reset the password of is related to the reset key given. | 7.5 |