Caseproof Memberpress

5 CVEs affecting Caseproof Memberpress. Latest disclosed: 2025-04-22. Critical: 0, High: 1.

Top CVEs affecting Caseproof Memberpress
CVESeverityScorePublishedSummary
CVE-2024-5031High8.52024-05-22The Memberpress plugin for WordPress is vulnerable to Blind Server-Side Request Forgery in all versions up to, and including, 1.11.29 via the 'mepr-user-file'…
CVE-2024-43956Medium6.52024-11-01Missing Authorization vulnerability in Caseproof, LLC Memberpress allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Memberpres…
CVE-2024-5025Medium6.42024-05-22The Memberpress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘arglist’ parameter in all versions up to, and including, 1.11.29 due…
CVE-2024-1412Medium6.12024-04-09The Memberpress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘message’ and 'error' parameters in all versions up to, and includ…
CVE-2024-11299Medium5.32025-04-22The Memberpress plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.11.37 via the WordPress core searc…