WP-Members

Plugin

Set alert

Changelog

Claim

VDP

Developer

Chad Butler

Latest version

3.5.4.1

Installations

60,000

Last updated

1 week ago

Vulnerability history

0 present

10 patched

Members plugin <= 3.5.4 Cross Site Scripting (XSS) Vulnerability <= 3.5.4

6.5

19 June, 2025

Members plugin <= 3.5.2 Authenticated (Contributor+) Stored CrossSite Scripting via wpmem_user_memberships Shortcode vulnerability <= 3.5.2

6.5

16 May, 2025

Members plugin <= 3.4.9.5 Authenticated (Contributor+) Stored CrossSite Scripting via wpmem_loginout Shortcode vulnerability <= 3.4.9.5

6.5

25 October, 2024

Members Membership Plugin plugin <= 3.4.9.5 Reflected CrossSite Scripting vulnerability <= 3.4.9.5

7.1

21 October, 2024

Members Membership Plugin plugin <= 3.4.9.3 Unprotected Storage of Potentially Sensitive Files vulnerability <= 3.4.9.3

5.3

26 April, 2024

WP-Members

Developer

Latest version

Installations

Last updated

Vulnerability history

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

WP-Members

Developer

Latest version

Installations

Last updated

Vulnerability history

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Let us know if we have missed a vulnerability reported elsewhere

reCAPTCHA's verification failed!

Thank you for contributing!