Simple Membership Security Vulnerabilities and Issues — Simple Membership CVE List

Lucene search

Simple-membership-pluginSimple Membership

3 matches found

CVE•added 2024/05/17 7:16 a.m.•51 views

CVE-2023-41957

Improper Privilege Management vulnerability in smp7, wp.Insider Simple Membership allows Privilege Escalation.This issue affects Simple Membership: from n/a through 4.3.4.

9.8CVSS6.8AI score0.00099EPSS

CVE•added 2024/05/14 3:43 p.m.•51 views

CVE-2024-4383

The Simple Membership plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'swpm_paypal_subscription_cancel_link' shortcode in all versions up to, and including, 4.4.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5.7AI score0.00183EPSS

CVE•added 2024/05/17 7:16 a.m.•47 views

CVE-2023-41956

Improper Authentication vulnerability in smp7, wp.Insider Simple Membership.This issue affects Simple Membership: from n/a through 4.3.4.

8.8CVSS6.8AI score0.00339EPSS