Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions 241114

  • Severity: high-risk
  • Status: Fixed
  • Publication: December 2, 2024

The s2Member plugin for WordPress is a popular tool for managing memberships, restricting content, and setting up paywalls and subscriptions. However, it has recently been found to have a security vulnerability that allows attackers to remotely execute code on the server. This means that anyone, even those who are not logged in, could potentially access and control the website.

Detected in:

s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.