Members plugin <= 3.5.2 Authenticated (Contributor+) Stored CrossSite Scripting via wpmem_user_memberships Shortcode vulnerability
16 May, 2025
Members plugin <= 3.4.9.5 Authenticated (Contributor+) Stored CrossSite Scripting via wpmem_loginout Shortcode vulnerability
25 October, 2024
Members Membership Plugin plugin <= 3.4.9.5 Reflected CrossSite Scripting vulnerability
21 October, 2024
Members Membership Plugin plugin <= 3.4.9.3 Unprotected Storage of Potentially Sensitive Files vulnerability
26 April, 2024
Members Membership plugin <= 3.4.9.2 Unauthenticated Stored CrossSite Scripting vulnerability
1 April, 2024