Lucene search
PRIOn knowledge basePRION:CVE-2015-4038HistoryJun 03, 2015 - 8:59 p.m.
Code injection
2015-06-0320:59:00
PRIOn knowledge base
www.prio-n.com
4
5.5 Medium
AI Score
Confidence
High
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
81.7%
The WP Membership plugin 1.2.3 for WordPress allows remote authenticated users to gain administrator privileges via an iv_membership_update_user_settings action to wp-admin/admin-ajax.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wpmembership | eq | 1.2.3 |
Related
zdt
zdt
WordPress WP Membership Plugin 1.2.3 Privilege Escalation Vulnerability
2015-05-23 00:00:00
packetstorm
packetstorm
WordPress WP Membership 1.2.3 Privilege Escalation
2015-05-22 00:00:00
patchstack
patchstack
WordPress WP Membership Plugin 1.2.3 - Multiple Vulnerabilities
2015-05-21 00:00:00
securityvulns
securityvulns
cve
cve
CVE-2015-4038
2015-06-03 20:59:00
CVE-2015-4039
2020-01-06 19:15:00
wpvulndb
wpvulndb
WP Membership <= 1.2.3 - Multiple Vulnerabilities
2015-05-21 00:00:00
prion
prion
Cross site scripting
2020-01-06 19:15:00
5.5 Medium
AI Score
Confidence
High
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
81.7%
Related for PRION:CVE-2015-4038