4 matches found
CVE-2015-5532
CVE-2015-5532 affects the Paid Memberships Pro WordPress plugin. The issue is multiple cross-site scripting (XSS) vulnerabilities in PMPro prior to version 1.8.4.3, exploitable via GET parameters in the WordPress admin pages: s or edit parameters to admin.php (pmpro-membershiplevels, pmpro-member...
Multiple XSS Vulnerabilities in Paid Memberships Pro WordPress Plugin
Advisory ID: HTB23264 Product: Paid Memberships Pro WordPress plugin Vendor: Stranger Studios Vulnerable Versions: 1.8.4.2 and probably prior Tested Version: 1.8.4.2 Advisory Publication: July 1, 2015 without technical details Vendor Notification: July 1, 2015 Vendor Patch: July 8, 2015 Public...
WordPress Paid Memberships Pro 1.8.4.2 Cross Site Scripting Vulnerability
WordPress Paid Memberships Pro plugin version 1.8.4.2 suffers from a cross site scripting vulnerability. Product: Paid Memberships Pro WordPress plugin Vendor: Stranger Studios Vulnerable Versions: 1.8.4.2 and probably prior Tested Version: 1.8.4.2 Advisory Publication: July 1, 2015 without...
WordPress Paid Memberships Pro 1.8.4.2 Cross Site Scripting
Advisory ID: HTB23264 Product: Paid Memberships Pro WordPress plugin Vendor: Stranger Studios Vulnerable Versions: 1.8.4.2 and probably prior Tested Version: 1.8.4.2 Advisory Publication: July 1, 2015 without technical details Vendor Notification: July 1, 2015 Vendor Patch: July 8, 2015 Public...