CVE-2018-13136

CVE-2018-13136

EPSS 1.5%

The Ultimate Member (aka ultimatemember) plugin before 2.0.18 for WordPress has XSS via the wp-admin settings screen.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/ultimatemember/ultimatemember/issues/456 https://github.com/ultimatemember/ultimatemember/releases/tag/2.0.18 https://wpvulndb.com/vulnerabilities/9708