VYPR

Cm Invitation Codes

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-32210MedApr 10, 2025
    risk 0.42cvss 6.5epss 0.00

    Missing Authorization vulnerability in CreativeMindsSolutions CM Registration and Invitation Codes cm-invitation-codes allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CM Registration and Invitation Codes: from n/a through <= 2.5.6.

  • CVE-2025-11167MedOct 11, 2025
    risk 0.24cvss 4.7epss 0.00

    The CM Registration – Tailored tool for seamless login and invitation-based registrations plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 2.5.6. This is due to insufficient validation on the redirect url supplied via the 'redirect_url'…