📦 Front End Users

by Etoilewebdesign

🔍 What is Front End Users?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2025-2005

CRITICAL CVSS 9.8 Apr 2, 2025

The Front End Users WordPress plugin allows unauthenticated attackers to upload arbitrary files through registration forms due to missing file type validation. This vulnerability affects all versions ...

CVE-2024-7607

HIGH CVSS 8.8 Aug 29, 2024

The Front End Users WordPress plugin contains a time-based SQL injection vulnerability in the 'order' parameter that allows authenticated attackers with Contributor-level access or higher to execute a...

CVE-2023-33322

HIGH CVSS 7.1 Mar 26, 2024

This CVE describes a reflected cross-site scripting (XSS) vulnerability in the WordPress Front End Users plugin. Attackers can inject malicious scripts via web page inputs, which execute in victims' b...

CVE-2024-12410

MEDIUM CVSS 4.9 Apr 2, 2025

This SQL injection vulnerability in the Front End Users WordPress plugin allows unauthenticated attackers to inject malicious SQL queries through the 'UserSearchField' parameter. Attackers can extract...

CVE-2025-26877

MEDIUM CVSS 6.5 Feb 25, 2025

This stored cross-site scripting (XSS) vulnerability in the Rustaurius Front End Users WordPress plugin allows attackers to inject malicious scripts into web pages. When users view affected pages, the...

CVE-2024-13563

MEDIUM CVSS 6.4 Feb 15, 2025

This vulnerability allows authenticated WordPress users with contributor-level access or higher to inject malicious scripts into pages using the Front End Users plugin's forgot-password shortcode. Whe...