Armember Security Vulnerabilities and Issues — Armember CVE List

Lucene search

ArmemberpluginArmember

2 matches found

CVE•added 2023/07/18 3:15 p.m.•41 views

CVE-2022-47421

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Repute InfoSystems ARMember (free), Repute InfoSystems ARMember (premium) plugins.

5.9CVSS5.1AI score0.00049EPSS

CVE•added 2023/07/12 5:15 a.m.•23 views

CVE-2023-3011

The ARMember plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.0.5. This is due to missing or incorrect nonce validation on the arm_check_user_cap function. This makes it possible for unauthenticated attackers to perform multiple unauthorized actio...

8.8CVSS8.2AI score0.00219EPSS