Really Simple Security logo

Log out
Get PRO

Latest

Access violation vulnerability in Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin 2.1.12

  • Severity: critical
  • Status: Fixed
  • Publication: November 9, 2020

A security issue was found in the Ultimate Member plugin before version 2.1.12 for WordPress. It allowed someone with access to the profile.php page to upgrade their user role (for example

Detected in:

Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin fixed vulnerable versions: >= * < 2.1.12

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.