E-plugins Wp Membership
4 CVEs affecting E-plugins Wp Membership. Latest disclosed: 2026-01-22. Critical: 1, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-10547 | Critical | 9.8 | 2024-11-09 | The WP Membership plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the user_profile_image_upload() function… |
CVE-2025-69292 | High | 8.8 | 2026-01-22 | Incorrect Privilege Assignment vulnerability in e-plugins WP Membership wp-membership allows Privilege Escalation.This issue affects WP Membership: from n/a th… |
CVE-2025-69193 | High | 7.3 | 2026-01-22 | Missing Authorization vulnerability in e-plugins WP Membership wp-membership allows Exploiting Incorrectly Configured Access Control Security Levels.This issue… |
CVE-2025-54717 | Medium | 5.4 | 2025-08-14 | Missing Authorization vulnerability in e-plugins WP Membership wp-membership allows Exploiting Incorrectly Configured Access Control Security Levels.This issue… |