Kainelabs Youzify

13 CVEs affecting Kainelabs Youzify. Latest disclosed: 2025-01-25. Critical: 1, High: 2.

Top CVEs affecting Kainelabs Youzify
CVESeverityScorePublishedSummary
CVE-2022-1950Critical9.82022-08-01The Youzify WordPress plugin before 1.2.0 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthent…
CVE-2024-37494High8.52024-07-09Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in KaineLabs Youzify.This issue affects Youzify: from n/a th…
CVE-2024-2864High7.32024-03-25Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in KaineLabs Youzify - Buddypress Moderation.This issue affe…
CVE-2024-13370Medium6.52025-01-25The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to unauthorized access du…
CVE-2024-4742Medium6.52024-06-20The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to SQL Injection via the…
CVE-2023-47191Medium6.52023-12-21Authorization Bypass Through User-Controlled Key vulnerability in KaineLabs Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin fo…
CVE-2024-8987Medium6.42024-10-10The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scri…
CVE-2024-39635Medium5.42024-11-01Missing Authorization vulnerability in KaineLabs Youzify allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Youzify: fr…
CVE-2023-0059Medium5.42023-02-21The Youzify WordPress plugin before 1.2.2 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the sh…
CVE-2021-24443Medium5.42021-08-02The About Me widget of the Youzify – BuddyPress Community, User Profile, Social Network & Membership WordPress plugin before 1.0.7 does not properly sanitise i…
CVE-2024-13368Medium4.32025-01-25The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to unauthorized access du…
CVE-2024-12113Medium4.32025-01-25The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to unauthorized loss of d…
CVE-2024-9067Medium4.32024-10-10The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to unauthorized modificat…