The iMember360 plugin (versions 3.8.012 through 3.9.001) used with WordPress websites has weaknesses that allow malicious people to insert unwanted code (like scripts or HTML) into the website. This can be done by sending specific information through the “”decrypt”” or “”encrypt”” parameters.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
