VYPR

Paid Membership Plugin

by WordPress

CVEs (5)

  • CVE-2024-13120MedFeb 13, 2025
    risk 0.31cvss 4.8epss 0.00

    The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.20 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site…

  • CVE-2024-13119MedFeb 13, 2025
    risk 0.31cvss 4.8epss 0.00

    The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.20 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site…

  • CVE-2024-10518MedDec 12, 2024
    risk 0.31cvss 4.8epss 0.00

    The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.15 does not sanitise and escape some of its Membership Plan settings, which could allow high privilege users such as admin to perform Stored…

  • CVE-2022-1088MedApr 18, 2022
    risk 0.31cvss 4.8epss 0.01

    The Page Security & Membership WordPress plugin through 1.5.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed

  • CVE-2024-13121LowFeb 13, 2025
    risk 0.23cvss 3.5epss 0.00

    The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.20 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site…