V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Filters

All vulnerabilities

25 / 25
Vendor: simple_membership_plugin×Clear all
8.8
CVE-2019-14328CVE
The Simple Membership plugin before 3.8.5 for WordPress has CSRF affecting the Bulk Operation s…
2019-01-01Pre-auth
EPSS3.1%
pct 86
6.1
CVE-2022-1724CVE
The Simple Membership WordPress plugin before 4.1.1 does not properly sanitise and escape param…
2022-01-01Pre-auth
EPSS1.7%
pct 74
9.8
CVE-2022-2317CVE
The Simple Membership WordPress plugin before 4.1.3 allows user to change their membership at t…
2022-01-01Pre-auth
EPSS1.1%
pct 61
8.8
CVE-2022-2273CVE
The Simple Membership WordPress plugin before 4.1.3 does not properly validate the membership_l…
2022-01-01
EPSS0.9%
pct 56
6.1
CVE-2017-18499CVE
The simple-membership plugin before 3.5.7 for WordPress has XSS.
2017-01-01Pre-auth
EPSS0.9%
pct 55
4.9
CVE-2023-0254CVE
The Simple Membership WP user Import plugin for WordPress is vulnerable to SQL Injection via th…
2023-01-01
EPSS0.9%
pct 54
6.1
CVE-2024-1985ANC
The Simple Membership plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…
2024-01-01Pre-auth
EPSS0.9%
pct 53
8.8
CVE-2023-41956ANC
Improper Authentication vulnerability in smp7, wp.Insider Simple Membership.This issue affects …
2023-01-01
EPSS0.7%
pct 48
8.8
CVE-2016-10884CVE
The simple-membership plugin before 3.3.3 for WordPress has multiple CSRF issues.
2016-01-01Pre-auth
EPSS0.7%
pct 48
7.5
CVE-2024-11088ANC
The Simple Membership plugin for WordPress is vulnerable to Sensitive Information Exposure in a…
2024-01-01Pre-auth
EPSS0.6%
pct 44
9.8
CVE-2023-41957ANC
Improper Privilege Management vulnerability in smp7, wp.Insider Simple Membership allows Privil…
2023-01-01Pre-auth
EPSS0.6%
pct 43
5.4
CVE-2022-4469CVE
The Simple Membership WordPress plugin before 4.2.2 does not validate and escape some of its sh…
2022-01-01
EPSS0.5%
pct 40
6.5
CVE-2022-0681CVE
The Simple Membership WordPress plugin before 4.1.0 does not have CSRF check in place when dele…
2022-01-01Pre-auth
EPSS0.5%
pct 40
6.1
CVE-2023-4719CVE
The Simple Membership plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via …
2023-01-01Pre-auth
EPSS0.5%
pct 37
4.7
CVE-2022-0328CVE
The Simple Membership WordPress plugin before 4.0.9 does not have CSRF check when deleting memb…
2022-01-01Pre-auth
EPSS0.5%
pct 36
6.1
CVE-2023-50376CVE
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerabil…
2023-01-01Pre-auth
EPSS0.5%
pct 36
5.4
CVE-2024-4383ANC
The Simple Membership plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…
2024-01-01
EPSS0.4%
pct 34
6.1
CVE-2023-6882CVE
The Simple Membership plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via …
2023-01-01Pre-auth
EPSS0.4%
pct 29
5.4
CVE-2024-3730ANC
The Simple Membership plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…
2024-01-01
EPSS0.3%
pct 25
6.1
CVE-2024-22308CVE
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple Me…
2024-01-01Pre-auth
EPSS0.3%
pct 19
6.1
CVE-2024-49682ANC
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple Me…
2024-01-01Pre-auth
EPSS0.3%
pct 16
6.5
CVE-2026-1461ANC
The Simple Membership plugin for WordPress is vulnerable to Improper Handling of Missing Values…
2026-01-01Pre-auth
EPSS0.2%
pct 13
4.3
CVE-2026-25308ANC
Missing Authorization vulnerability in wp.insider Simple Membership simple-membership allows Ex…
2026-01-01
EPSS0.2%
pct 8
5.9
CVE-2025-49333ANC
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerabil…
2025-01-01
EPSS0.2%
pct 7
5.4
CVE-2026-24986ANC
Cross-Site Request Forgery (CSRF) vulnerability in wp.insider Simple Membership WP user Import …
2026-01-01Pre-auth
EPSS0.1%
pct 0
Select a vulnerability on the left to open the preview.