RegistrationMagic
Metagauss
Developer
6.0.8.2
Latest version
9,000
Installations
No date
Last updated
Vulnerability history
0 present
41 patched
19 Mitigation rules
- Broken Access Control vulnerability<= 6.0.7.620/03/2026
- Account Takeover vulnerability<= 6.0.7.112/03/2026
- Subscriber+ Sensitive Data Disclosure vulnerability<= 6.0.7.212/03/2026
- Broken Access Control vulnerability<= 6.0.7.618/02/2026
- WordPress RegistrationMagic - Custom Registration Forms, User Registration, Payment, and User Login plugin <= 6.0.6.9 - Unauthenticated Payment Bypass via rm_process_paypal_sdk_payment vulnerability<= 6.0.6.918/02/2026
- Subscriber+ Form Creation vulnerability< 6.0.7.216/02/2026
- Missing Authorization to Unauthenticated Arbitrary Settings Modification vulnerability<= 6.0.7.428/01/2026
- Privilege Escalation via admin_order vulnerability<= 6.0.7.119/01/2026
- Cross Site Request Forgery (CSRF) vulnerability<= 6.0.6.910/01/2026
- Authenticated (Contributor+) Stored Cross-Site Scripting via 'RM_Forms' Shortcode vulnerability<= 6.0.6.715/12/2025
- Authenticated (Administrator+) SQL Injection vulnerability<= 6.0.6.207/10/2025
- Stored XSS vulnerability< 6.0.2.119/05/2025
- Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability<= 6.0.4.303/04/2025
- Reflected Cross Site Scripting (XSS) vulnerability<= 6.0.3.328/01/2025
- Unauthenticated Privilege Escalation via Password Recovery vulnerability<= 6.0.2.626/11/2024
- Cross Site Scripting (XSS) vulnerability<= 6.0.1.016/08/2024
- Cross Site Scripting (XSS) vulnerability<= 6.0.0.101/08/2024
- Cross Site Scripting (XSS) vulnerability<= 5.3.2.030/04/2024
- Auth. SQL Injection (SQLi) vulnerability<= 5.3.1.026/03/2024
- Cross Site Request Forgery (CSRF) vulnerability<= 5.3.0.026/03/2024
- Reflected Cross Site Scripting (XSS) vulnerability<= 5.2.5.916/03/2024
- Authenticated (Subscriber+) Privilege Escalation vulnerability<= 5.3.0.014/03/2024
- Broken Access Control vulnerability<= 5.2.5.921/02/2024
- Form Submission Limit Bypass vulnerability<= 5.2.5.027/12/2023
- IP Limit Bypass vulnerability<= 5.2.5.027/12/2023
- Reflected Cross Site Scripting (XSS) vulnerability<= 5.2.4.127/12/2023
- SQL Injection vulnerability<= 5.2.4.521/12/2023
- Broken Access Control vulnerability<= 5.2.3.005/12/2023
- Delete Form Submission Cross Site Request Forgery (CSRF) vulnerability<= 5.2.2.627/11/2023
- Authentication Bypass vulnerability<= 5.2.1.016/05/2023
- Multiple Cross Site Request Forgery (CSRF)<= 5.1.9.217/02/2023
- Arbitrary Price Change<= 5.1.9.220/01/2023
- Content Injection<= 5.1.9.220/01/2023
- Reflected Cross-Site Scripting (XSS) vulnerability<= 5.0.1.828/12/2021
- Reflected Cross-Site Scripting (XSS) vulnerability<= 5.0.1.827/12/2021
- Authentication Bypass vulnerability<= 5.0.1.708/12/2021
- SQL Injection (SQLi) vulnerability<= 5.0.1.508/12/2021
- Multiple Critical vulnerabilities<= 4.6.0.305/03/2020
- Multiple Cross-Site Scripting (XSS) vulnerabilities<= 4.6.0.130/01/2020
- Authenticated SQL Injection (SQLi) vulnerability<= 4.6.0.130/01/2020
- Unauthenticated PHP Object Injection vulnerability<= 3.7.9.203/10/2017