Armember Armember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User Signup
4 CVEs affecting Armember Armember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User Signup. Latest disclosed: 2026-06-02. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-5076 | Critical | 9.8 | 2026-06-02 | The ARMember Premium plugin for WordPress is vulnerable to an insecure password reset mechanism in all versions up to, and including, 7.3.1. The plugin stores… |
CVE-2026-5073 | High | 7.5 | 2026-06-02 | The ARMember Premium plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter of the 'arm_directory_paging_action' AJAX action in all vers… |
CVE-2026-5074 | Medium | 6.5 | 2026-06-02 | The ARMember Premium plugin for WordPress is vulnerable to SQL Injection via the 'sSortDir_0' parameter of the `get_private_content_data` AJAX action in all ve… |
CVE-2024-5596 | Medium | 6.3 | 2024-06-22 | The ARMember Premium plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 6.7. This is due to incorrectly impleme… |