Vulnerability in Paid Membership Plugin, Ecommerce, User Registration Form, Login Profile & Restrict Content
CVE-2026-10820
The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.16.17 does not verify that the user performing a subscription action owns the targeted subscription, allo…
EPSS: 0.001 (3.3th percentile) — read the EPSS interpretation.
Affected products
- Unknown Paid Membership Plugin, Ecommerce, User Registration Form, Login Profile & Restrict Content — versions 0
References
- contact@wpscan.com (technical-description, exploit, vdb-entry)