3 matches found
CVE-2025-3521
The Team Members – Best WordPress Team Plugin with Team Slider, Team Showcase & Team Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Social Link icons in all versions up to, and including, 3.4.1 due to insufficient input sanitization and output escaping. This makes i...
CVE-2025-32686
CVE-2025-32686: Deserialization of untrusted data leading to PHP object injection in the WP Speedo Team Members plugin. Affected software: Team Members versions up to 3.4.0 (n/a through 3.4.0). Impact is described as Deserialization of Untrusted Data enabling Object Injection; CVSSv3.1 base score...
CVE-2025-32686 WordPress Team Members plugin <= 3.4.4 - PHP Object Injection Vulnerability
Deserialization of Untrusted Data vulnerability in WPSpeedo Team Members wps-team allows Object Injection.This issue affects Team Members: from n/a through = 3.4.4...