Lucene search
K

6 matches found

Patchstack
Patchstack
added 2026/04/15 10:3 p.m.8 views

WordPress ProfilePress plugin <= 4.16.12 - Missing Authorization to Authenticated (Subscriber+) Inactive Membership Plan Subscription vulnerability

Missing Authorization to Authenticated Subscriber+ Inactive Membership Plan Subscription vulnerability discovered by Supakiad S. m3ez - E-CQURITY Thailand in WordPress Plugin ProfilePress versions = 4.16.12...

4.3CVSS5.8AI score0.00316EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/12/12 6:15 a.m.5 views

CVE-2024-10518

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.15 does not sanitise and escape some of its Membership Plan settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting...

4.8CVSS7.3AI score0.00334EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/12/12 6:0 a.m.14 views

CVE-2024-10518 ProfilePress < 4.15.15 - Admin+ Stored XSS

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.15 does not sanitise and escape some of its Membership Plan settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting...

5.7AI score0.00334EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/06/04 10:10 a.m.13 views

CVE-2023-47837 WordPress ARMember plugin <= 4.0.10 - Membership Plan Bypass vulnerability

Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege Escalation.This issue affects ARMember: from n/a through 4.0.10...

8.3CVSS7AI score0.00386EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/04 10:10 a.m.20 views

CVE-2023-47837 WordPress ARMember plugin <= 4.0.10 - Membership Plan Bypass vulnerability

Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege Escalation.This issue affects ARMember: from n/a through 4.0.10...

8.3CVSS8.4AI score0.00386EPSS
Exploits0References1
exploitpack
exploitpack
added 2017/03/06 12:0 a.m.13 views

MLM Membership Plan Script 2.0.5 - SQL Injection

MLM Membership Plan Script 2.0.5 - SQL Injection Exploit Title: MLM Membership Plan Script v2.0.5 - SQL Injection Google Dork: N/A Date: 06.03.2017 Vendor Homepage: http://www.phpscriptsmall.com/ Software : http://www.phpscriptsmall.com/product/mlm-membership-plan-script/ Demo:...

0.3AI score
Exploits0
Rows per page
Query Builder