5 matches found
CVE-2025-66107
CVE-2025-66107 concerns the WordPress plugin Subscriptions & Memberships for PayPal (versions
PT-2025-47769
Missing Authorization vulnerability in Scott Paterson Subscriptions & Memberships for PayPal subscriptions-memberships-for-paypal allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Subscriptions & Memberships for PayPal: from n/a through = 1.1.7...
PT-2025-8686 · WordPress · Subscriptions & Memberships For Paypal
Name of the Vulnerable Software and Affected Versions: Subscriptions & Memberships for PayPal plugin for WordPress versions up to and including 1.1.6 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on a function, allowing unauthenticate...
WordPress Subscriptions & Memberships for PayPal plugin <= 1.1.6 - Cross-Site Request Forgery to Arbitrary Post Deletion vulnerability
Cross-Site Request Forgery to Arbitrary Post Deletion vulnerability discovered by Krzysztof Zając in WordPress Plugin Subscriptions & Memberships for PayPal versions = 1.1.6...
WordPress Subscriptions & Memberships for PayPal plugin <= 1.1.2 - Reflected Cross-Site Scripting (XSS) vulnerability
Reflected Cross-Site Scripting XSS vulnerability discovered by WPScanTeam in WordPress Subscriptions & Memberships for PayPal plugin versions = 1.1.2. Solution Update the WordPress Subscriptions & Memberships for PayPal plugin to the latest available version at least 1.1.3...