E-plugins Wp Membership

4 CVEs affecting E-plugins Wp Membership. Latest disclosed: 2026-01-22. Critical: 1, High: 2.

Top CVEs affecting E-plugins Wp Membership
CVESeverityScorePublishedSummary
CVE-2024-10547Critical9.82024-11-09The WP Membership plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the user_profile_image_upload() function…
CVE-2025-69292High8.82026-01-22Incorrect Privilege Assignment vulnerability in e-plugins WP Membership wp-membership allows Privilege Escalation.This issue affects WP Membership: from n/a th…
CVE-2025-69193High7.32026-01-22Missing Authorization vulnerability in e-plugins WP Membership wp-membership allows Exploiting Incorrectly Configured Access Control Security Levels.This issue…
CVE-2025-54717Medium5.42025-08-14Missing Authorization vulnerability in e-plugins WP Membership wp-membership allows Exploiting Incorrectly Configured Access Control Security Levels.This issue…