Simple Membership Security Vulnerabilities and Issues — Simple Membership CVE List

Lucene search

Simple-membership-pluginSimple Membership

1 matches found

CVE•added 2023/09/06 2:15 a.m.•34 views

CVE-2023-4719

The Simple Membership plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the list_type parameter in versions up to, and including, 4.3.5 due to insufficient input sanitization and output escaping. Using this vulnerability, unauthenticated attackers could inject arbitrary web s...

7.2CVSS6.2AI score0.01417EPSS