Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup 4.0.37

  • Severity: medium-risk
  • Status: Open
  • Publication: August 16, 2024

A popular WordPress plugin called ARMember, which is used for managing memberships, restricting content, and creating user profiles, has a security vulnerability. This means that hackers with certain levels of access can upload SVG files that contain harmful code, which will then be executed whenever someone views the file.

Detected in:

ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup open vulnerable versions: >= * <= 4.0.37

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.