← back
CVE-2019-14328

CVE-2019-14328

EPSS 3.1%
The Simple Membership plugin before 3.8.5 for WordPress has CSRF affecting the Bulk Operation section.
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/153801/WordPress-Simple-Membership-3.8.4-Cross-Site-Request-Forgery.htmlunverifiedexploitdbwww.exploit-db.com/exploits/47182unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/153801/WordPress-Simple-Membership-3.8.4-Cross-Site-Request-Forgery.htmlhttps://wordpress.org/plugins/simple-membership/#developershttps://wpvulndb.com/vulnerabilities/9482