Ontraport CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Ontraport Subscriptions

Search

Switch to Advanced Search (Beta)

Total 5 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-58238	2 Ontraport, Wordpress	2 Pilotpress, Wordpress	2025-09-23	6.5 Medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ONTRAPORT PilotPress allows Stored XSS. This issue affects PilotPress: from n/a through 2.0.35.
CVE-2025-58221	2 Ontraport, Wordpress	2 Pilotpress, Wordpress	2025-09-23	4.3 Medium
Missing Authorization vulnerability in ONTRAPORT PilotPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects PilotPress: from n/a through 2.0.35.
CVE-2017-1002010	1 Ontraport	1 Membership Simplified	2025-04-20	N/A
Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn't sanitize user input via recordId in the delete_media function.
CVE-2017-1002009	1 Ontraport	1 Membership Simplified	2025-04-20	N/A
Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn't sanitize user input via recordId in the delete function.
CVE-2024-23524	1 Ontraport	1 Pilotpress	2024-11-21	5.3 Medium
Missing Authorization vulnerability in ONTRAPORT Inc. PilotPress.This issue affects PilotPress: from n/a through 2.0.30.

Page 1 of 1.