5 matches found
CVE-2023-6733
The WP-Members Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.4.8 via the wpmemfield shortcode. This makes it possible for authenticated attackers, with contributor access and above, to extract sensitive data includin...
CVE-2023-6733
creationtimestamp| type| source ---|---|--- 2024-01-04 05:26:17+00:00| seen| https://t.me/ctinow/162769 2024-01-05 01:32:00+00:00| seen| https://t.me/cibsecurity/74391 2024-01-05 21:06:30+00:00| seen| https://t.me/arpsyndicate/2524 2024-01-23 19:26:53+00:00| seen| https://t.me/ctinow/172254...
CVE-2023-6733
The WP-Members Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.4.8 via the wpmemfield shortcode. This makes it possible for authenticated attackers, with contributor access and above, to extract sensitive data includin...
CVE-2023-6733 WP-Members Membership Plugin <= 3.4.8 - Missing Authorization to Sensitive Information Exposure
The WP-Members Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.4.8 via the wpmemfield shortcode. This makes it possible for authenticated attackers, with contributor access and above, to extract sensitive data includin...
CVE-2023-6733
CVE-2023-6733 affects the WordPress plugin WP-Members Membership Plugin . Vulnerability: Sensitive Information Exposure via the shortcode wpmem_field in all versions up to 3.4.8. Impact: authenticated users with contributor access and above can exfiltrate sensitive data such as emails, password h...