Lucene search
K

280 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:14 a.m.10 views

CVE-2023-39994

Missing Authorization vulnerability in Repute InfoSystems ARMember Premium allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ARMember Premium: from n/a through 5.9.2...

4.3CVSS8.5AI score0.00277EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:59 a.m.9 views

CVE-2023-3996

The ARMember Lite - Membership Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 4.0.16 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.8CVSS6AI score0.00456EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:59 a.m.10 views

CVE-2023-3011

The ARMember plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.0.5. This is due to missing or incorrect nonce validation on the armcheckusercap function. This makes it possible for unauthenticated attackers to perform multiple unauthorized action...

8.8CVSS6.4AI score0.00323EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:57 a.m.8 views

CVE-2023-47837

Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege Escalation.This issue affects ARMember: from n/a through 4.0.10...

8.8CVSS7AI score0.00386EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:23 a.m.7 views

CVE-2022-46808

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Repute Infosystems ARMember armember-membership allows SQL Injection.This issue affects ARMember: from n/a through 3.4.11...

9.8CVSS8.9AI score0.00639EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:17 a.m.11 views

CVE-2022-47421

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Repute InfoSystems ARMember free, Repute InfoSystems ARMember premium plugins...

5.9CVSS5.5AI score0.00388EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:32 p.m.12 views

CVE-2022-1903

The ARMember WordPress plugin before 3.4.8 is vulnerable to account takeover even the administrator due to missing nonce and authorization checks in an AJAX action available to unauthenticated users, allowing them to change the password of arbitrary users by knowing their username...

8.1CVSS7.1AI score0.0852EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:52 p.m.7 views

CVE-2022-47424

Cross-Site Request Forgery CSRF vulnerability in Repute InfoSystems ARMember, Repute InfoSystems ARMember Premium allows Cross-Site Request Forgery.This issue affects ARMember: from n/a through 4.0.5; ARMember Premium: from n/a before 6.7.1...

5.4CVSS7AI score0.00219EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/06 12:7 a.m.11 views

CVE-2022-47140

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Repute InfoSystems ARMember plugin = 4.0.1 versions...

7.1CVSS5.8AI score0.00382EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 9:39 a.m.11 views

CVE-2024-30222

Deserialization of Untrusted Data vulnerability in Repute Infosystems ARMember.This issue affects ARMember: from n/a through 4.0.26...

8.8CVSS5.2AI score0.00608EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:30 a.m.16 views

CVE-2024-30223

Deserialization of Untrusted Data vulnerability in Repute Infosystems ARMember.This issue affects ARMember: from n/a through 4.0.26...

9.8CVSS5.2AI score0.00645EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 6:59 a.m.6 views

CVE-2024-32948

Missing Authorization vulnerability in Repute Infosystems ARMember.This issue affects ARMember: from n/a through 4.0.28...

9.1CVSS5.1AI score0.00568EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/01/02 3:15 p.m.4 views

CVE-2023-39994

Missing Authorization vulnerability in reputeinfosystems ARMember Premium armember allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ARMember Premium: from n/a through = 5.9.2...

4.3CVSS5.8AI score0.00277EPSS
Exploits0References3
NVD
NVD
added 2025/01/02 3:15 p.m.9 views

CVE-2023-39994

Missing Authorization vulnerability in Repute InfoSystems ARMember Premium allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ARMember Premium: from n/a through 5.9.2...

4.3CVSS0.00277EPSS
Exploits0References1
OSV
OSV
added 2025/01/02 3:15 p.m.2 views

CVE-2023-39994

Missing Authorization vulnerability in Repute InfoSystems ARMember Premium allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ARMember Premium: from n/a through 5.9.2...

4.3CVSS5.8AI score0.00277EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/02 3:3 p.m.4 views

CVE-2023-39994 WordPress ARMember Premium plugin <= 5.9.2 - Broken Access Control

Missing Authorization vulnerability in reputeinfosystems ARMember Premium armember allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ARMember Premium: from n/a through = 5.9.2...

4.3CVSS7.3AI score0.00277EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/02 3:3 p.m.16 views

CVE-2023-39994 WordPress ARMember Premium plugin <= 5.9.2 - Broken Access Control

Missing Authorization vulnerability in Repute InfoSystems ARMember Premium allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ARMember Premium: from n/a through 5.9.2...

4.3CVSS0.00277EPSS
Exploits0References1
CVE
CVE
added 2025/01/02 3:3 p.m.45 views

CVE-2023-39994

CVE-2023-39994 affects Repute InfoSystems ARMember Premium (WordPress plugin) up to version 5.9.2, via a Missing Authorization/Broken Access Control issue. The ARMember entry lists affected versions as

4.3CVSS8.5AI score0.00277EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/02 12:0 a.m.5 views

PT-2025-1447 · Repute Infosystems · Armember Premium

Name of the Vulnerable Software and Affected Versions: Repute InfoSystems ARMember Premium versions prior to 5.9.2 Description: The issue is related to a missing authorization vulnerability in Repute InfoSystems ARMember Premium, which allows exploiting incorrectly configured access control...

4.3CVSS9.5AI score0.00277EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/01/02 12:0 a.m.7 views

WordPress plugin ARMember Premium 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS8.8AI score0.00277EPSS
Exploits0References1
Rows per page
Query Builder