WordPress Paid Memberships Pro - Membership Maps Add On plugin < 0.7 - Contributor+ Sensitive Information Disclosure vulnerability

WordPress Paid Memberships Pro - Membership Maps Add On plugin 0.7 - Contributor+ Sensitive Information Disclosure vulnerability discovered by Scott Kingsley Clark in WordPress Plugin Pmpro Membership Maps versions 0.7...

CVE-2024-1286

The pmpro-membership-maps WordPress plugin before 0.7 does not prevent users with at least the contributor role from leaking sensitive information about users with a membership on the site...

CVE-2024-1286 Paid Memberships Pro - Membership Maps Add On < 0.7 - Contributor+ Sensitive Information Disclosure

The pmpro-membership-maps WordPress plugin before 0.7 does not prevent users with at least the contributor role from leaking sensitive information about users with a membership on the site...

WordPress plugin pmpro-membership-maps 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress Pmpro Membership Maps Plugin < 0.7 is vulnerable to Sensitive Data Exposure

Software Pmpro Membership Maps Type Plugin Vulnerable versions 0.7 Fixed in 0.7 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-1286 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID a7b3657c40ef Credits Scott Kingsley Clark...

PT-2024-17768 · WordPress · Pmpro-Membership-Maps

Name of the Vulnerable Software and Affected Versions: pmpro-membership-maps versions prior to 0.7 Description: The issue allows users with at least the contributor role to leak sensitive information about users with a membership on the site. This is due to the lack of proper access control in th...