WordPress ARMember Plugin <= 4.0.26 is vulnerable to PHP Object Injection

Software ARMember Type Plugin Vulnerable versions = 4.0.26 Fixed in 4.0.27 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-30223 Patch priority High CVSS severity High 9 Developer Claim ownership PSID 8d16e0b0481c Credits LVT-tholv2k Required privilege Unauthenticated...

CVE-2023-52200 WordPress ARMember Plugin <= 4.0.22 is vulnerable to Cross Site Request Forgery (CSRF) leading to PHP Object Injection

Cross-Site Request Forgery CSRF, Deserialization of Untrusted Data vulnerability in Repute Infosystems ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup.This issue affects ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile &...

WordPress ARMember Plugin <= 4.0.22 is vulnerable to Cross Site Request Forgery (CSRF)

Software ARMember Type Plugin Vulnerable versions = 4.0.22 Fixed in 4.0.23 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-52200 Patch priority Low CVSS severity Low 9.6 Developer Claim ownership PSID 7905097651fa Credits Rafie Muhammad Patchstac...

WordPress ARMember Plugin <= 3.4.11 is vulnerable to SQL Injection

Software ARMember Type Plugin Vulnerable versions = 3.4.11 Fixed in 4.0 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2022-46808 Patch priority High CVSS severity High 8.2 Developer Claim ownership PSID 69cdf488ab0c Credits Le Ngoc Anh Required privilege Unauthenticated Publishe...