Smp7 Wp.Insider Simple Membership vulnerabilities
4 known vulnerabilities affecting smp7_wp.insider/simple_membership.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2023-41957CRITICALCVSS 9.8≥ n/a, ≤ 4.3.42024-05-17
CVE-2023-41957 [CRITICAL] CWE-269 CVE-2023-41957: Improper Privilege Management vulnerability in smp7, wp.Insider Simple Membership allows Privilege E
Improper Privilege Management vulnerability in smp7, wp.Insider Simple Membership allows Privilege Escalation.This issue affects Simple Membership: from n/a through 4.3.4.
cvelistv5nvd
CVE-2023-41956HIGHCVSS 8.8≥ n/a, ≤ 4.3.42024-05-17
CVE-2023-41956 [HIGH] CWE-287 CVE-2023-41956: Improper Authentication vulnerability in smp7, wp.Insider Simple Membership.This issue affects Simpl
Improper Authentication vulnerability in smp7, wp.Insider Simple Membership.This issue affects Simple Membership: from n/a through 4.3.4.
cvelistv5nvd
CVE-2024-22308MEDIUMCVSS 6.1≥ n/a, ≤ 4.4.12024-01-24
CVE-2024-22308 [MEDIUM] CWE-601 CVE-2024-22308: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple Members
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple Membership.This issue affects Simple Membership: from n/a through 4.4.1.
cvelistv5nvd
CVE-2023-50376MEDIUMCVSS 6.1≥ n/a, ≤ 4.3.82023-12-19
CVE-2023-50376 [MEDIUM] CWE-79 CVE-2023-50376: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in smp7, wp.Insider Simple Membership allows Reflected XSS.This issue affects Simple Membership: from n/a through 4.3.8.
cvelistv5nvd