VYPR

Ultimatemember

by WordPress

Source repositories

CVEs (54)

  • CVE-2024-1071CriMar 13, 2024
    risk 0.74cvss 9.8epss 0.89

    The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to SQL Injection via the 'sorting' parameter in versions 2.1.3 to 2.8.2 due to insufficient escaping on the user supplied…

  • CVE-2023-3460CriJul 4, 2023
    risk 0.65cvss 9.8epss 0.72

    The Ultimate Member WordPress plugin before 2.6.7 does not prevent visitors from creating user accounts with arbitrary capabilities, effectively allowing attackers to create administrator accounts at will. This is actively being exploited in the wild.

  • CVE-2020-36155CriJan 4, 2021
    risk 0.59cvss 10.0epss 0.09

    An issue was discovered in the Ultimate Member plugin before 2.1.12 for WordPress, aka Unauthenticated Privilege Escalation via User Meta. An attacker could supply an array parameter for sensitive metadata, such as the wp_capabilities user meta that defines a user's role. During…

  • CVE-2020-36157CriJan 4, 2021
    risk 0.58cvss 10.0epss 0.03

    An issue was discovered in the Ultimate Member plugin before 2.1.12 for WordPress, aka Unauthenticated Privilege Escalation via User Roles. Due to the lack of filtering on the role parameter that could be supplied during the registration process, an attacker could supply the…

  • CVE-2020-36156CriJan 4, 2021
    risk 0.58cvss 9.9epss 0.02

    An issue was discovered in the Ultimate Member plugin before 2.1.12 for WordPress, aka Authenticated Privilege Escalation via Profile Update. Any user with wp-admin access to the profile.php page could supply the parameter um-role with a value set to any role (e.g.,…

  • CVE-2019-10270HigJun 21, 2019
    risk 0.57cvss 8.8epss 0.01

    An arbitrary password reset issue was discovered in the Ultimate Member plugin 2.39 for WordPress. It is possible (due to lack of verification and correlation between the reset password key sent by mail and the user_id parameter) to reset the password of another user. One only…

  • CVE-2019-10673HigApr 3, 2019
    risk 0.57cvss 8.8epss 0.02

    A CSRF vulnerability in a logged-in user's profile edit form in the Ultimate Member plugin before 2.0.40 for WordPress allows attackers to become admin and subsequently extract sensitive information and execute arbitrary code. This occurs because the attacker can change the…

  • CVE-2018-10233HigApr 23, 2018
    risk 0.57cvss 8.8epss 0.01

    The User Profile & Membership plugin before 2.0.7 for WordPress has no mitigations implemented against cross site request forgery attacks. This is a structural finding throughout the entire plugin.

  • CVE-2018-0588HigMay 14, 2018
    risk 0.49cvss 7.5epss 0.03

    Directory traversal vulnerability in the AJAX function of Ultimate Member plugin prior to version 2.0.4 for WordPress allows remote attackers to read arbitrary files via unspecified vectors.

  • CVE-2022-3384HigNov 29, 2022
    risk 0.47cvss 7.2epss 0.03

    The Ultimate Member plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2.5.0 via the populate_dropdown_options function that accepts user supplied input and passes it through call_user_func(). This is restricted to non-parameter PHP…

  • CVE-2022-3383HigNov 29, 2022
    risk 0.47cvss 7.2epss 0.03

    The Ultimate Member plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2.5.0 via the get_option_value_from_callback function that accepts user supplied input and passes it through call_user_func(). This makes it possible for…

  • CVE-2026-4248HigMar 27, 2026
    risk 0.45cvss 8.0epss 0.00

    The Ultimate Member plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.2. This is due to the '{usermeta:password_reset_link}' template tag being processed within post content via the '[um_loggedin]' shortcode, which…

  • CVE-2025-13220MedDec 21, 2025
    risk 0.42cvss 6.4epss 0.00

    The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode attributes in all versions up to, and including, 2.11.0 due to…

  • CVE-2025-1702HigMar 5, 2025
    risk 0.42cvss 7.5epss 0.01

    The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the 'search' parameter in all versions up to, and including, 2.10.0 due to insufficient…

  • CVE-2025-0308HigJan 18, 2025
    risk 0.42cvss 7.5epss 0.01

    The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the search parameter in all versions up to, and including, 2.9.1 due to insufficient escaping…

  • CVE-2024-2123HigMar 13, 2024
    risk 0.42cvss 7.2epss 0.27

    The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the several parameters in all versions up to, and including, 2.8.3 due to insufficient input…

  • CVE-2022-1208MedJun 13, 2022
    risk 0.42cvss 6.4epss 0.01

    The Ultimate Member plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Biography field featured on individual user profile pages due to insufficient input sanitization and output escaping that allows users to encode malicious web scripts with HTML encoding…

  • CVE-2015-9304MedAug 12, 2019
    risk 0.40cvss 6.1epss 0.01

    The ultimate-member plugin before 1.3.18 for WordPress has XSS via text input.

  • CVE-2018-17866MedOct 9, 2018
    risk 0.40cvss 6.1epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in includes/core/um-actions-login.php in the "Ultimate Member - User Profile & Membership" plugin before 2.0.28 for WordPress allow remote attackers to inject arbitrary web script or HTML via the "Primary button Text" or…

  • CVE-2018-13136MedJul 4, 2018
    risk 0.40cvss 6.1epss 0.01

    The Ultimate Member (aka ultimatemember) plugin before 2.0.18 for WordPress has XSS via the wp-admin settings screen.

Page 1 of 3