VYPR

UserPro - Community and User Profile WordPress Plugin

by WordPress

CVEs (1)

  • CVE-2025-4187MedJun 14, 2025
    risk 0.38cvss 5.9epss 0.01

    The UserPro - Community and User Profile WordPress Plugin plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 5.1.10 via the userpro_fbconnect() function. This makes it possible for unauthenticated attackers to read the contents of…