Description Cross-Site Request Forgery (CSRF) vulnerability in Ultimate Member plugin <= 2.6.0 versions. Remediation References CVE-2023-31216 Related Vulnerabilities WordPress Plugin WordPress Bitcoin Payments-Blockonomics Cross-Site Scripting (3.5.7) WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Arbitrary File Upload (2.0.21) OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-8176) ownCloud Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-2044) WordPress Plugin Post Views Count (Support caching plugins!) Cross-Site Scripting (3.0.2) Severity High Classification CVE-2023-31216 CWE-352 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities