cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-1407,https://securityvulnerability.io/vulnerability/CVE-2024-1407,Cross-Site Request Forgery Vulnerability in Paid Memberships Pro,"The Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.12.10. This is due to missing or incorrect nonce validation on multiple functions. This makes it possible for unauthenticated attackers to subscribe to, modify, or cancel membership for a user via a forged request granted they can trick a user into performing an action such as clicking on a link.",Wordpress,"Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions",5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-06-19T06:55:47.195Z,0
CVE-2024-3215,https://securityvulnerability.io/vulnerability/CVE-2024-3215,Cross-Site Request Forgery Vulnerability in Paid Memberships Pro Plugin,"The Paid Memberships Pro plugin for WordPress, which facilitates content restriction and user registration, contains a vulnerability due to improper nonce validation in the pmpro_update_level_group_order() function. This allows unauthenticated attackers to exploit the inadequacy by tricking site administrators into executing unwanted actions. Specifically, by crafting a forged request, attackers could manipulate order levels on affected sites, compromising the security and integrity of user content and subscriptions.",Wordpress,"Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions",4.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,2024-05-02T16:52:29.758Z,0
CVE-2024-0588,https://securityvulnerability.io/vulnerability/CVE-2024-0588,Cross-Site Request Forgery Vulnerability in Paid Memberships Pro Plugin for WordPress,"The Paid Memberships Pro plugin for WordPress is susceptible to a Cross-Site Request Forgery (CSRF) attack, specifically in versions up to and including 2.12.10. This vulnerability arises from a lack of necessary nonce validation within the pmpro_lifter_save_streamline_option() function. Unscrupulous actors can exploit this flaw by tricking a site administrator into executing unintended actions, such as clicking on a malicious link, which may enable the streamlined setting of Lifter LMS without proper authentication.",Wordpress,"Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions",4.3,MEDIUM,0.0004299999854993075,false,,false,false,true,true,false,false,2024-04-09T18:58:54.999Z,0
CVE-2024-1279,https://securityvulnerability.io/vulnerability/CVE-2024-1279,Plugin Leaks Sensitive Metadata for Other Users,The Paid Memberships Pro WordPress plugin before 2.12.9 does not prevent user with at least the contributor role from leaking other users' sensitive metadata.,Wordpress,Paid Memberships Pro,,,0.0004299999854993075,false,,false,false,true,true,false,false,2024-03-11T17:56:06.781Z,0
CVE-2024-0624,https://securityvulnerability.io/vulnerability/CVE-2024-0624,Cross-Site Request Forgery in Paid Memberships Pro Plugin for WordPress,"The Paid Memberships Pro plugin for WordPress contains a vulnerability due to inadequate nonce validation in the pmpro_update_level_order() function. This allows unauthenticated attackers to potentially change membership levels by crafting a forged request if they manage to trick an administrator into clicking a malicious link. This issue affects all versions up to and including 2.12.7, posing risks to the integrity of user memberships and system security.",Wordpress,"Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions",5.3,MEDIUM,0.0006500000017695129,false,,false,false,true,true,false,false,2024-01-25T02:15:00.000Z,0
CVE-2023-6855,https://securityvulnerability.io/vulnerability/CVE-2023-6855,Unauthenticated Membership Level Modification in Paid Memberships Pro Plugin for WordPress,"The Paid Memberships Pro plugin for WordPress contains a vulnerability that allows unauthenticated attackers to modify membership levels. This flaw arises due to an insufficient capability check within the pmpro_rest_api_get_permissions_check function. Attackers can exploit this weakness in all versions up to 2.12.5, leading to unauthorized alterations in membership levels and associated pricing structures. It is crucial for users of this plugin to update to a patched version to prevent potential exploitation.",Wordpress,"Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions",5.3,MEDIUM,0.0024300001095980406,false,,false,false,false,,false,false,2024-01-11T08:32:31.855Z,0
CVE-2023-6187,https://securityvulnerability.io/vulnerability/CVE-2023-6187,Arbitrary File Upload Vulnerability in Paid Memberships Pro Plugin for WordPress,"The Paid Memberships Pro plugin for WordPress is affected by a vulnerability allowing authenticated users with subscriber privileges or higher to upload arbitrary files. This occurs due to inadequate file type validation in the 'pmpro_paypalexpress_session_vars_for_user_fields' function. If the payment method is set to PayPal Express or the deprecated 2Checkout and a custom user field is configured to be visible in the profile, attackers can exploit this vulnerability to potentially execute remote code on the affected site's server.",Wordpress,"Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions",8.8,HIGH,0.003470000112429261,false,,false,false,false,,false,false,2023-11-18T02:15:00.000Z,0
CVE-2020-36754,https://securityvulnerability.io/vulnerability/CVE-2020-36754,Cross-Site Request Forgery in Paid Memberships Pro Plugin for WordPress,"The Paid Memberships Pro plugin for WordPress is susceptible to Cross-Site Request Forgery (CSRF) due to improper nonce validation within the pmpro_page_save() function. An unauthenticated attacker could exploit this vulnerability by tricking an administrator into clicking a malicious link, thereby manipulating page data without authorization. This raises significant security concerns for systems utilizing this plugin, especially in scenarios where user permissions are not strictly managed.",Wordpress,"Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions",4.3,MEDIUM,0.0014700000174343586,false,,false,false,false,,false,false,2023-10-20T07:29:34.539Z,0
CVE-2023-0631,https://securityvulnerability.io/vulnerability/CVE-2023-0631,Paid Memberships Pro < 2.9.12 - Subscriber+ SQL Injection,"The Paid Memberships Pro plugin for WordPress, prior to version 2.9.12, is susceptible to an SQL injection vulnerability. This flaw allows subscribers to execute shortcodes that directly concatenate user-supplied attributes into SQL queries, potentially exposing sensitive information or manipulating database contents. It underscores the necessity of validating and sanitizing user inputs in applications.",Wordpress,Paid Memberships Pro,8.8,HIGH,0.0011399999493733048,false,,false,false,false,,false,false,2023-03-20T16:15:00.000Z,0
CVE-2022-4830,https://securityvulnerability.io/vulnerability/CVE-2022-4830,Paid Memberships Pro < 2.9.9 - Contributor+ Stored XSS via Shortcode,"The Paid Memberships Pro WordPress plugin before 2.9.9 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins.",Wordpress,Paid Memberships Pro,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2023-02-13T14:32:30.964Z,0
CVE-2022-4831,https://securityvulnerability.io/vulnerability/CVE-2022-4831,Custom User Profile Fields for User Registration & Member Frontend Profiles with Paid Memberships Pro < 1.8.1 - Contributor+ Stored XSS via Shortcode,"The Custom User Profile Fields for User Registration WordPress plugin before 1.8.1 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins.",Wordpress,Custom User Profile Fields For User Registration & Member Frontend Profiles With Paid Memberships Pro,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2023-01-30T20:31:55.705Z,0
CVE-2023-23488,https://securityvulnerability.io/vulnerability/CVE-2023-23488,Unauthenticated SQL Injection in Paid Memberships Pro Plugin for WordPress,"The Paid Memberships Pro plugin for WordPress, specifically versions earlier than 2.9.8, contains an unauthenticated SQL injection vulnerability. This flaw is located in the 'code' parameter of the '/pmpro/v1/order' REST route, allowing attackers to execute arbitrary SQL queries through crafted requests. Exploiting this vulnerability could lead to unauthorized access to sensitive data, posing significant risks to the integrity and confidentiality of the website's database.",Wordpress,Paid Memberships Pro WordPress Plugin,9.8,CRITICAL,0.27647000551223755,false,,false,false,true,true,false,false,2023-01-20T00:00:00.000Z,0
CVE-2021-25114,https://securityvulnerability.io/vulnerability/CVE-2021-25114,Paid Memberships Pro < 2.6.7 - Unauthenticated Blind SQL Injection,"The Paid Memberships Pro WordPress plugin before 2.6.7 does not escape the discount_code in one of its REST route (available to unauthenticated users) before using it in a SQL statement, leading to a SQL injection",Wordpress,Paid Memberships Pro,9.8,CRITICAL,0.032839998602867126,false,,false,false,false,,false,false,2022-02-07T15:47:24.000Z,0
CVE-2021-24979,https://securityvulnerability.io/vulnerability/CVE-2021-24979,Paid Memberships Pro < 2.6.6 - Reflected Cross-Site Scripting,"The Paid Memberships Pro WordPress plugin before 2.6.6 does not escape the s parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting",Wordpress,Paid Memberships Pro,6.1,MEDIUM,0.001509999972768128,false,,false,false,false,,false,false,2021-12-27T10:33:22.000Z,0
CVE-2015-5532,https://securityvulnerability.io/vulnerability/CVE-2015-5532,,"Multiple cross-site scripting (XSS) vulnerabilities in the Paid Memberships Pro (PMPro) plugin before 1.8.4.3 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) s parameter to membershiplevels.php, (2) memberslist.php, or (3) orders.php in adminpages/ or the (4) edit parameter to adminpages/membershiplevels.php.",Wordpress,Paid Memberships Pro,6.1,MEDIUM,0.0017300000181421638,false,,false,false,false,,false,false,2017-10-23T18:00:00.000Z,0
CVE-2014-8801,https://securityvulnerability.io/vulnerability/CVE-2014-8801,,Directory traversal vulnerability in services/getfile.php in the Paid Memberships Pro plugin before 1.7.15 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the QUERY_STRING in a getfile action to wp-admin/admin-ajax.php.,Wordpress,Paid Memberships Pro,,,0.12208999693393707,false,,false,false,false,,false,false,2014-11-28T15:00:00.000Z,0