Filter
-Infinity
0
Trending
Ultimate MemberWordPress Ultimate Member plugin <= 2.10.3 - Arbitrary Function Call vulnerability
5.5
EPSS
0.04%
First published (updated )
Ultimate MemberUltimate Member <= 2.10.0 - Unauthenticated SQL Injection via search Parameter
7.5
First published (updated )
Ultimate MemberUltimate Member <= 2.9.2 - Authenticated SQL Injection
6.5
First published (updated )
Ultimate MemberUltimate Member <= 2.9.1 - Unauthenticated SQL Injection
7.5
EPSS
0.09%
First published (updated )
Ultimate MemberUltimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin <= 2.9.1 - Information Exposure
5.3
EPSS
0.05%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ForumWPWordPress ForumWP plugin <= 2.1.0 - PHP Object Injection vulnerability
9.8
First published (updated )
Ultimate MemberWordPress JobBoardWP – Job Board Listings and Submissions plugin <= 1.2.2 - IDOR Leading To Job Removal Vulnerability
8.8
First published (updated )
Ultimate MemberForumWP – Forum & Discussion Board <= 2.1.2 - Reflected Cross-Site Scripting via url Parameter
6.1
First published (updated )
Ultimate MemberForumWP – Forum & Discussion Board <= 2.1.2 - Reflected Cross-Site Scripting
6.1
First published (updated )
Ultimate MemberUltimate Member <= 2.8.9 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Profile Picture Update
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ultimate MemberUltimate Member <= 2.8.6 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
EPSS
0.05%
First published (updated )
Ultimate MemberUltimate Member <= 2.8.6 - Cross-Site Request Forgery to Membership Status Change
5.3
EPSS
0.09%
First published (updated )
Ultimate MemberForumWP – Forum & Discussion Board Plugin <= 2.0.2 - Insecure Direct Object Reference to Authenticated (Subscriber+) Privilege Escalation via Account Takeover
8.8
EPSS
0.05%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ultimate MemberWordPress Ultimate Member Plugin <= 2.6.0 is vulnerable to Cross Site Request Forgery (CSRF)
8.8
First published (updated )
Ultimate MemberUltimate Member < 2.6.7 - Unauthenticated Privilege Escalation
9.8
First published (updated )
Ultimate MemberJobBoardWP < 1.2.2 - Unauthenticated Arbitrary File Upload
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ultimate MemberUltimate Member Plugin Template class-shortcodes.php load_template pathname traversal
7.5
First published (updated )
Ultimate MemberThe Ultimate Member plugin for WordPress is vulnerable to arbitrary redirects due to insufficient va…
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ultimate MemberJobBoardWP – Job Board Listings and Submissions <= 1.0.7 Authenticated Stored Cross-Site Scripting
5.5
First published (updated )
Ultimate MemberUltimate Member < 2.1.20 - Authenticated Reflected Cross-Site Scripting (XSS)
5.4
First published (updated )
Ultimate MemberThe Ultimate Member plugin before 2.1.13 for WordPress mishandles hidden name="timestamp" fields in …
5.3
First published (updated )
Ultimate MemberAn issue was discovered in the Ultimate Member plugin before 2.1.12 for WordPress, aka Unauthenticat…
10
First published (updated )
Ultimate MemberAn issue was discovered in the Ultimate Member plugin before 2.1.12 for WordPress, aka Authenticated…
9.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.