Paid Member Subscriptions
Cozmoslabs
Developer
3.0.4
Latest version
10,000
Installations
No date
Last updated
Vulnerability history
0 present
16 patched
7 Mitigation rules
- Reflected Cross Site Scripting (XSS) vulnerability<= 2.17.320/04/2026
- Insecure Direct Object References (IDOR) vulnerability<= 2.16.811/02/2026
- WordPress Paid Membership Subscriptions - Effortless Memberships, Recurring Payments & Content Restriction plugin <= 2.11.1 - Missing Authorization via pms_stripe_connect_handle_authorization_return vulnerability<= 2.11.102/02/2026
- Missing Authorization to Unauthenticated Arbitrary Member Subscription Auto Renewal vulnerability<= 2.16.405/11/2025
- Broken Access Control Vulnerability<= 2.15.903/09/2025
- Local File Inclusion Vulnerability<= 2.15.429/07/2025
- SQL Injection Vulnerability<= 2.15.103/07/2025
- Cross Site Scripting (XSS) Vulnerability<= 2.14.328/03/2025
- Authentication Bypass via pms_payment_id vulnerability<= 2.13.713/01/2025
- Unauthenticated Content Restriction Bypass to Sensitive Information Exposure vulnerability<= 2.13.418/12/2024
- Unauthenticated Arbitrary Shortcode Execution vulnerability<= 2.13.026/11/2024
- Reflected Cross-Site Scripting vulnerability<= 2.12.802/10/2024
- Cross Site Request Forgery (CSRF) vulnerability<= 2.11.022/04/2024
- Missing Authorization via creating_pricing_table_page vulnerability<= 2.11.114/02/2024
- Cross Site Request Forgery (CSRF) vulnerability<= 2.10.427/12/2023
- Reflected Cross-Site Scripting (XSS) vulnerability<= 2.4.126/07/2021