Lucene search
Krzysztof ZającPATCHSTACK:E7080429BE29B4880428F382E98A0C23HistoryJan 25, 2022 - 12:00 a.m.
WordPress Simple Membership plugin <= 4.0.8 - Arbitrary Member Deletion via Cross-Site Request Forgery (CSRF) vulnerability
2022-01-2500:00:00
Krzysztof Zając
patchstack.com
6
0.001 Low
EPSS
Percentile
30.2%
Arbitrary Member Deletion via Cross-Site Request Forgery (CSRF) vulnerability discovered by Krzysztof Zając in WordPress Simple Membership plugin (versions <= 4.0.8).
Solution
Update the WordPress Simple Membership plugin to the latest available version (at least 4.0.9).
| CPE | Name | Operator | Version |
|---|---|---|---|
| simple membership | le | 4.0.8 |
Related
wpvulndb
wpvulndb
Simple Membership < 4.0.9 - Arbitrary Member Deletion via CSRF
2022-01-25 00:00:00
nvd
nvd
CVE-2022-0328
2022-02-28 09:15:08
cvelist
cvelist
CVE-2022-0328 Simple Membership < 4.0.9 - Arbitrary Member Deletion via CSRF
2022-02-28 09:06:45
cnvd
cnvd
WordPress Simple Membership plugin跨站请求伪造漏洞
2022-03-02 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-02-28 09:15:00
wpexploit
wpexploit
Simple Membership < 4.0.9 - Arbitrary Member Deletion via CSRF
2022-01-25 00:00:00
cve
cve
CVE-2022-0328
2022-02-28 09:15:08