Genetechsolutions Pie Register — known CVE vulnerabilities
Every CVE whose affected-product data names Genetechsolutions Pie Register, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2024-27957 — CVSS 10.0 (critical): Unrestricted Upload of File with Dangerous Type vulnerability in Pie Register.This issue affects Pie Register: from n/a through 3.8.3.1.
CVE-2021-24731 — CVSS 9.8 (critical): The Registration Forms – User profile, Content Restriction, Spam Protection, Payment Gateways, Invitation Codes WordPress plugin before…
CVE-2018-10969 — CVSS 9.8 (critical): SQL injection vulnerability in the Pie Register plugin before 3.0.10 for WordPress allows remote attackers to execute arbitrary SQL…
CVE-2019-15659 — CVSS 9.8 (critical): The pie-register plugin before 3.1.2 for WordPress has SQL injection, a different issue than CVE-2018-10969.
CVE-2021-24647 — CVSS 8.1 (high): The Registration Forms – User profile, Content Restriction, Spam Protection, Payment Gateways, Invitation Codes WordPress plugin before…
CVE-2015-7682 — CVSS 6.5 (medium): Multiple SQL injection vulnerabilities in pie-register/pie-register.php in the Pie Register plugin before 2.0.19 for WordPress allow remote…
CVE-2022-4024 — CVSS 6.5 (medium): The Registration Forms WordPress plugin before 3.8.1.3 does not have authorisation and CSRF when deleting users via an init action handler…
CVE-2021-24239 — CVSS 6.1 (medium): The Pie Register – User Registration Forms. Invitation based registrations, Custom Login, Payments WordPress plugin before 3.7.0.1 does…
CVE-2019-1010207 — CVSS 6.1 (medium): Genetechsolutions Pie Register 3.0.15 is affected by: Cross Site Scripting (XSS). The impact is: Stealing of session cookies. The component…
CVE-2023-0552 — CVSS 5.4 (medium): The Registration Forms WordPress plugin before 3.8.2.3 does not properly validate the redirection URL when logging in and login out…
CVE-2024-13818 — CVSS 5.3 (medium): The Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content…
CVE-2014-8802 — CVSS 5.0 (medium): The Pie Register plugin before 2.0.14 for WordPress does not properly restrict access to certain functions in pie-register.php, which…
CVE-2015-7377 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in pie-register/pie-register.php in the Pie Register plugin before 2.0.19 for WordPress allows…