Reputeinfosystems

Armember

18 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2026-7649

  • EPSS 0.34%
  • Veröffentlicht 02.05.2026 06:44:06
  • Zuletzt bearbeitet 05.05.2026 19:19:23

The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'orderby' parameter in all versions up to, and including, 4.0.60 due to insu...

8.8

CVE-2022-47425

  • EPSS 0.25%
  • Veröffentlicht 09.12.2025 16:41:37
  • Zuletzt bearbeitet 30.01.2026 19:36:17

Missing Authorization vulnerability in Repute Infosystems ARMember allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ARMember: from n/a through 3.4.10.

4.3

CVE-2023-39994

  • EPSS 0.27%
  • Veröffentlicht 02.01.2025 15:15:19
  • Zuletzt bearbeitet 28.04.2026 19:21:06

Missing Authorization vulnerability in Repute InfoSystems ARMember Premium allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ARMember Premium: from n/a through 5.9.2.

6.3

CVE-2024-10681

  • EPSS 0.36%
  • Veröffentlicht 06.12.2024 10:15:04
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 4.0.51. This is due to the software allowin...

8.8

CVE-2022-47424

  • EPSS 0.19%
  • Veröffentlicht 19.11.2024 18:15:19
  • Zuletzt bearbeitet 26.01.2026 16:05:08

Cross-Site Request Forgery (CSRF) vulnerability in Repute InfoSystems ARMember, Repute InfoSystems ARMember Premium allows Cross-Site Request Forgery.This issue affects ARMember: from n/a through 4.0.5; ARMember Premium: from n/a before 6.7.1.

6.4

CVE-2024-7703

  • EPSS 1.14%
  • Veröffentlicht 17.08.2024 12:15:04
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 4.0.37 due to insufficient i...

8.8

CVE-2023-47837

  • EPSS 0.39%
  • Veröffentlicht 04.06.2024 10:15:12
  • Zuletzt bearbeitet 29.05.2025 20:37:47

Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege Escalation.This issue affects ARMember: from n/a through 4.0.10.

8.8

CVE-2023-51356

  • EPSS 0.55%
  • Veröffentlicht 17.05.2024 09:15:15
  • Zuletzt bearbeitet 29.05.2025 20:38:10

Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege Escalation.This issue affects ARMember: from n/a through 4.0.10.

6.1

CVE-2024-4133

  • EPSS 0.53%
  • Veröffentlicht 02.05.2024 17:15:35
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 4.0.30. This is due to insufficient validation on the redirect ...

9.1

CVE-2024-32948

  • EPSS 0.57%
  • Veröffentlicht 24.04.2024 07:15:48
  • Zuletzt bearbeitet 28.04.2026 19:25:01

Missing Authorization vulnerability in Repute Infosystems ARMember.This issue affects ARMember: from n/a through 4.0.28.