WP User Frontend
Tareq Hasan
Developer
4.2.2
Latest version
20,000
Installations
Nov 4, 2025
Last updated
Vulnerability history
0 present
11 fixed
4 Mitigation rules
- Broken Access Control Vulnerability<= 4.1.12Sep 22, 2025
- Content Injection Vulnerability<= 4.1.12Sep 22, 2025
- SQL Injection vulnerability<= 4.0.7Aug 1, 2024
- Malicious Polyfill.io Embed vulnerability<= 4.0.7Jul 3, 2024
- Authenticated Privilege Escalation vulnerability<= 3.6.5Nov 9, 2023
- Broken Access Control vulnerability<= 3.6.8Oct 3, 2023
- Cross-Site Request Forgery (CSRF) vulnerability<= 3.6.0Mar 21, 2023
- Obscure Registration as Admin vulnerability<= 3.5.28Oct 31, 2022
- SQL Injection (SQLi) to Reflected Cross-Site Scripting (XSS)<= 3.5.25Dec 27, 2021
- SQL Injection (SQLi) vulnerability<= 3.5.23Nov 18, 2021
- Unrestricted File Upload<= 2.3.10Feb 8, 2016