The Userpro plugin for WordPress has a security issue called Local File Inclusion, which affects versions up to 5.1.9. This allows unauthorized individuals to add and run any files on the server, which could contain harmful PHP code. It can be used to bypass security measures, access private information, or execute code even if only “safe” file types are allowed.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
