Ultimate Member Security Vulnerabilities and Issues — Ultimate Member CVE List

Lucene search

UltimatememberUltimate Member

1 matches found

CVE•added 2019/04/03 5:29 a.m.•55 views

CVE-2019-10673

A CSRF vulnerability in a logged-in user's profile edit form in the Ultimate Member plugin before 2.0.40 for WordPress allows attackers to become admin and subsequently extract sensitive information and execute arbitrary code. This occurs because the attacker can change the e-mail address in the ad...

9.3CVSS8.8AI score0.00428EPSS