VYPR

Wp User Avatar

by WordPress

Source repositories

CVEs (2)

  • CVE-2026-3309MedApr 4, 2026
    risk 0.42cvss 6.5epss 0.00

    The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 4.16.11. This is due to the plugin allowing…

  • CVE-2026-4949MedApr 15, 2026
    risk 0.21cvss 4.3epss 0.00

    The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 4.16.12. This is due to the 'process_checkout' function…