VYPR
Unrated severityNVD Advisory· Published Mar 19, 2012· Updated Jun 16, 2026

CVE-2011-5082

CVE-2011-5082

Description

Cross-site scripting (XSS) vulnerability in the s2Member Pro plugin before 111220 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s2member_pro_authnet_checkout[coupon] parameter (aka Coupon Code field).

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.