CVE-2024-10681 - The The ARMember – Membership Plugin, Content Rest

CVE ID : CVE-2024-10681 Published : Dec. 6, 2024, 10:15 a.m. | 44 minutes ago Description : The The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 4.0.51. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for authenticated attackers, with subscriber-level access and above, to execute arbitrary shortcodes. Severity: 6.3 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Autor

Dez 6, 2024 - 12:00

0 2

CVE-2024-10681 - The The ARMember – Membership Plugin, Content Rest

CVE ID : CVE-2024-10681
Published : Dec. 6, 2024, 10:15 a.m. | 44 minutes ago
Description : The The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 4.0.51. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for authenticated attackers, with subscriber-level access and above, to execute arbitrary shortcodes.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE-2024-10681 - The The ARMember – Membership Plugin, Content Rest

Tags:

Verwandte Beiträge

Follow Us

Popular Posts

Recommended Posts

Popular Tags