Vulnerabilities in smp7, wp.insider
4 resultsCVE-2023-41956HIGHWordPress Simple Membership plugin <= 4.3.4 - Authenticated Account Takeover vulnerabilityEPSS 0.7%CVE-2023-41957HIGHWordPress Simple Membership plugin <= 4.3.4 - Unauthenticated Membership Role Privilege Escalation vulnerabilityEPSS 0.6%CVE-2023-50376HIGHWordPress Simple Membership Plugin <= 4.3.8 is vulnerable to Unauth. Reflected Cross Site Scripting (XSS)EPSS 0.5%CVE-2024-22308LOWWordPress Simple Membership Plugin <= 4.4.1 is vulnerable to Open RedirectionEPSS 0.3%