Product
etoilewebdesign front end users
10 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-47580
CVE-2024-13569
CVE-2025-2005
CVE-2024-12410
CVE-2025-26877
CVE-2024-13563
CVE-2024-7607
CVE-2024-7606
CVE-2023-33322
CVE-2023-34005
<= 3.2.32
Missing Authorization vulnerability in Rustaurius Front End Users front-end-only-users allows Exploiting Incorrectly Configured Ac
<= 3.2.32
The Front End Users WordPress plugin through 3.2.32 does not sanitise and escape a parameter before outputting it back in the page
<= 3.2.32
The Front End Users plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the file u
<= 3.2.32
The Front End Users plugin for WordPress is vulnerable to SQL Injection via the 'UserSearchField' parameter in all versions up to,
< 3.2.31
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rustaurius Front End Users f
< 3.2.31
The Front End Users plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's forgot-password shortcode i
< 3.2.29
The Front End Users plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter in all versions u
< 3.2.29
The Front End Users plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'user-search' shortcode in
< 3.2.25
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Etoile Web Design Front End
<= 3.2.24
Cross-Site Request Forgery (CSRF) vulnerability in Etoile Web Design Front End Users plugin <= 3.2.24 versions.