Description

WordPress Plugin Membership & Content Restriction-Paid Member Subscriptions is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin Membership & Content Restriction-Paid Member Subscriptions version 1.4.0 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.4.1 or latest

References

https://wordpress.org/plugins/paid-member-subscriptions/changelog/

Related Vulnerabilities

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36401)

WordPress Plugin Integration for Contact Form 7 and Infusionsoft Cross-Site Scripting (1.1.2)

Contao Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-16558)

WordPress Plugin Data Tables Generator by Supsystic Security Bypass (1.10.25)

WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker Multiple SQL Injection Vulnerabilities (4.4.3)

Severity

High

Tags

Missing Update