WCFM Membership

WC Lovers

Developer

2.11.11

Latest version

10,000

Installations

No date

Last updated

WordPress Plugin

Active VDP

Report vulnerability

Vulnerabilities

Security Policy

Security Contributors

Vulnerability history

0 present

4 patched

2 Mitigation rules

WordPress WCFM Membership - WooCommerce Memberships for Multivendor Marketplace plugin <= 2.11.8 - Insecure Direct Object Reference to Update Membership Payment vulnerability
<= 2.11.8
09/02/2026
Missing Authorization vulnerability
<= 2.10.0
06/04/2023
Cross-Site Request Forgery vulnerability
<= 2.9.10
06/04/2023
Unauthenticated Privilege Escalation vulnerability
<= 2.10.0
06/04/2023