Lucene search
K

118 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 3:16 a.m.5 views

CVE-2024-51815

Improper Control of Generation of Code 'Code Injection' vulnerability in Cristián Lávaque s2Member s2member allows Code Injection.This issue affects s2Member: from n/a through = 241114...

9CVSS7.2AI score0.0046EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:21 a.m.8 views

CVE-2024-31237

Improper Privilege Management vulnerability in WP Sharks s2Member Pro allows Privilege Escalation.This issue affects s2Member Pro: from n/a through 240315...

7.5CVSS6.8AI score0.00417EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/04 10:43 p.m.5 views

CVE-2024-8326

The s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 241114 via the 'scgetdetails' function. This makes it possible for...

8.8CVSS6.5AI score0.00587EPSS
Exploits0References1
NVD
NVD
added 2024/12/17 10:15 a.m.21 views

CVE-2024-8326

The s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 241114 via the 'scgetdetails' function. This makes it possible for...

8.8CVSS0.00587EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/12/17 9:22 a.m.10 views

CVE-2024-8326 s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions <= 241114 - Authenticated (Contributor+) Sensitive Information Exposure

The s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 241114 via the 'scgetdetails' function. This makes it possible for...

8.8CVSS6.5AI score0.00587EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/12/17 9:22 a.m.30 views

CVE-2024-8326 s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions <= 241114 - Authenticated (Contributor+) Sensitive Information Exposure

The s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 241114 via the 'scgetdetails' function. This makes it possible for...

8.8CVSS0.00587EPSS
Exploits0References5
CVE
CVE
added 2024/12/17 9:22 a.m.57 views

CVE-2024-8326

CVE-2024-8326 affects s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions (WordPress). The issue is Sensitive Information Exposure via the sc_get_details function in all versions up to 241114; authenticated users with Contributor+ access c...

8.8CVSS8.4AI score0.00587EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/12/17 12:0 a.m.5 views

WordPress plugin s2Member 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information...

8.8CVSS7.9AI score0.00587EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/12/17 12:0 a.m.3 views

PT-2024-38941 · WordPress · S2Member

Name of the Vulnerable Software and Affected Versions: s2Member plugin for WordPress versions up to, and including, 241114 Description: The issue allows authenticated attackers with Contributor-level access and above to extract sensitive data, including user data and database configuration...

8.8CVSS9.3AI score0.00587EPSS
Exploits0References10
Patchstack
Patchstack
added 2024/12/16 10:35 p.m.4 views

WordPress s2Member plugin <= 241114 - Authenticated (Contributor+) Sensitive Information Exposure vulnerability

Authenticated Contributor+ Sensitive Information Exposure vulnerability discovered by wesley wcraft in WordPress Plugin s2Member versions = 241114...

8.8CVSS7AI score0.00587EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/12/06 2:15 p.m.8 views

CVE-2024-51815

Improper Control of Generation of Code 'Code Injection' vulnerability in Cristián Lávaque s2Member s2member allows Code Injection.This issue affects s2Member: from n/a through = 241114...

9CVSS0.0046EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/06 1:7 p.m.13 views

CVE-2024-51815 WordPress s2Member plugin <= 241114 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Cristián Lávaque s2Member s2member allows Code Injection.This issue affects s2Member: from n/a through = 241114...

9CVSS8.6AI score0.0046EPSS
Exploits0References1
CVE
CVE
added 2024/12/06 1:7 p.m.62 views

CVE-2024-51815

CVE-2024-51815 details (CPE: s2Member Pro for WordPress) An Unauthenticated Remote Code Execution vulnerability exists in WP Sharks s2Member Pro (affected:

9CVSS7.2AI score0.0046EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/06 1:7 p.m.19 views

CVE-2024-51815 WordPress s2Member plugin <= 241114 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Cristián Lávaque s2Member s2member allows Code Injection.This issue affects s2Member: from n/a through = 241114...

9CVSS0.0046EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/06 12:0 a.m.4 views

WordPress plugin s2Member Pro 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

9CVSS8.4AI score0.0046EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/12/02 9:51 a.m.4 views

WordPress s2Member plugin <= 241114 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by Hakiduck Patchstack Alliance in WordPress Plugin s2Member versions = 241114...

9CVSS7.5AI score0.0046EPSS
Exploits0Affected Software1
NVD
NVD
added 2024/05/17 9:15 a.m.17 views

CVE-2024-31237

Improper Privilege Management vulnerability in WP Sharks s2Member Pro allows Privilege Escalation.This issue affects s2Member Pro: from n/a through 240315...

7.5CVSS7.6AI score0.00417EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/17 8:53 a.m.23 views

CVE-2024-31237 WordPress s2Member plugin <= 240315 - Privilege Escalation vulnerability

Improper Privilege Management vulnerability in WP Sharks s2Member Pro allows Privilege Escalation.This issue affects s2Member Pro: from n/a through 240315...

7.5CVSS6.9AI score0.00417EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/17 8:53 a.m.28 views

CVE-2024-31237 WordPress s2Member plugin <= 240315 - Privilege Escalation vulnerability

Improper Privilege Management vulnerability in WP Sharks s2Member Pro allows Privilege Escalation.This issue affects s2Member Pro: from n/a through 240315...

7.5CVSS7.6AI score0.00417EPSS
Exploits0References1
CVE
CVE
added 2024/05/17 8:53 a.m.79 views

CVE-2024-31237

CVE-2024-31237 affects the WordPress plugin s2Member Pro (WP Sharks). It is an Improper Privilege Management vulnerability enabling Privilege Escalation in s2Member Pro versions from n/a up to 240315. The Red Hat entry and other records confirm Privilege Escalation as the impact. A remediation is...

7.5CVSS6.8AI score0.00417EPSS
Exploits0References1
Rows per page
Query Builder