Medium severity5.4NVD Advisory· Published May 14, 2018· Updated Jun 17, 2026
CVE-2018-0585
CVE-2018-0585
Description
Cross-site scripting vulnerability in Ultimate Member plugin prior to version 2.0.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <2.0.4
- Ultimate Member/Ultimate Memberv5Range: prior to version 2.0.4
Patches
Vulnerability mechanics
References
3- jvn.jp/en/jp/JVN28804532/index.htmlnvdThird Party AdvisoryVDB Entry
- wordpress.org/plugins/ultimate-member/nvdRelease NotesVendor Advisory
- wpvulndb.com/vulnerabilities/9608nvd
News mentions
0No linked articles in our index yet.