Paid Memberships Pro Security Vulnerabilities and Issues — Paid Memberships Pro CVE List

Lucene search

StrangerstudiosPaid Memberships Pro

3 matches found

CVE•added 2024/07/09 9:15 a.m.•45 views

CVE-2024-37486

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Paid Memberships Pro.This issue affects Paid Memberships Pro: from n/a through 3.0.5.

7.6CVSS7.7AI score0.00398EPSS

CVE•added 2024/07/30 6:15 a.m.•43 views

CVE-2024-1286

The pmpro-membership-maps WordPress plugin before 0.7 does not prevent users with at least the contributor role from leaking sensitive information about users with a membership on the site.

6.5CVSS6.1AI score0.00112EPSS

CVE•added 2024/07/30 6:15 a.m.•40 views

CVE-2024-1287

The pmpro-member-directory WordPress plugin before 1.2.6 does not prevent users with at least the contributor role from leaking other users' sensitive information, including password hashes.

6.5CVSS6.6AI score0.00088EPSS