Wp Membership Security Vulnerabilities and Issues — Wp Membership CVE List

E-pluginsWp Membership

2 matches found

CVE•added 2020/01/06 6:40 p.m.•107 views

CVE-2015-4039

The CVE-2015-4039 entry corresponds to the WordPress WP Membership plugin version 1.2.3, which contains stored XSS vulnerabilities. According to the sources, remote authenticated users can inject arbitrary script or HTML via (1) profile fields or (2) new post content. An additional note indicates...

5.4CVSS5AI score0.02793EPSS

CVE•added 2023/03/27 3:37 p.m.•67 views

CVE-2020-36666

CVE-2020-36666 relates to privilege escalation in multiple WordPress plugins from e-plugins, including directory-pro, final-user-wp-frontend-user-profiles, photographer-directory, real-estate-pro, institutions-directory, lawyer-directory, doctor-listing, hotel-listing, fitness-trainer, and wp-mem...

8.8CVSS8.4AI score0.00905EPSS

Web