Front End Users

Vulnerabilities 14Slug front-end-only-usersLatest version 3.2.35WordPress.org →

Minimum safe version

3.2.34

Update to 3.2.34 or later to address 12 fixable vulnerabilities

Latest available3.2.35 ✓⚠ 2 vulnerabilities have no fix

Medium 6.5 Unfixed

2025-09-22≤ 3.2.35

Front End Users <= 3.2.33 - Authenticated (Contributor+) Stored Cross-Site Scripting

Wordfence EUVD CVE

Medium 4.3

2025-10-22< 3.2.34

CVE-2025-62072

CVE Wordfence

Critical 9.8 Unfixed

2025-05-15≤ 3.2.35

WordPress Front End Users plugin <= 3.2.35 - Broken Access Control vulnerability

CVE EUVD Wordfence

High 7.1

2025-04-22< 3.2.33

CVE-2024-13569

CVE Wordfence

Critical 9.8

2025-04-02< 3.2.33

Front-End-Only-Users <= 3.2.32 - Unauthenticated Arbitrary File Upload

EUVD Wordfence CVE

Medium 4.9

2025-04-02< 3.2.33

Front End Users <= 3.2.32 - Authenticated (Admin+) SQL injection

CVE EUVD Wordfence

Medium 6.5

2025-02-25< 3.2.31

CVE-2025-26877

CVE EUVD Patchstack Wordfence

Medium 6.4

2025-02-15< 3.2.31

CVE-2024-13563

CVE EUVD Wordfence

Medium 5.4

2024-08-29< 3.2.29

CVE-2024-7606

CVE Patchstack Wordfence

High 8.8

2024-08-29< 3.2.29

CVE-2024-7607

CVE Patchstack Wordfence

Medium 6.5

2023-07-17< 3.2.25

CVE-2023-34005

CVE Patchstack WPScan

High 7.1

2024-03-26< 3.2.25

CVE-2023-33322

CVE Patchstack Wordfence

N/A

2023-04-07< 3.2.25

Front End Users <= 3.2.24 - Missing Authorization to Unauthenticated Registered User Deletion

Wordfence

N/A

2023-04-07< 3.2.25

Front End Users <= 3.2.24 - Cross-Site Request Forgery

Wordfence