Known vulnerabilities in Ultimate Member Ultimate Member - User Profile & Membership Plugin 1.0.48

Vendor: Ultimate Member
Website: https://profiles.wordpress.org/ultimatemember/
Total Security Bulletins: 14

Security bulletins (14)

Secuity bulletin Severity Status Published
SB2020081301: Open redirect in Ultimate Member – User Profile & Membership Plugin for WordPress Medium
Patched
13.08.2020
SB2020012404: Improper access control in Ultimate Member – User Profile & Membership Plugin for WordPress Medium
Patched
24.01.2020
SB2019072216: Cross-site scripting in Ultimate Member plugin for WordPress Low
Patched
22.07.2019
SB2019062409: Multiple vulnerabilities in Ultimate Member plugin for WordPress Low
Patched
24.06.2019
SB2019052319: Cross-site scripting in Ultimate Member – User Profile & Membership Plugin for WordPress Medium
Patched
23.05.2019
SB2019052318: Cross-site scripting in Ultimate Member – User Profile & Membership Plugin for WordPress Medium
Patched
23.05.2019
SB2018112216: Cross-site request forgery in Ultimate Member – User Profile & Membership Plugin for WordPress Medium
Patched
22.11.2018
SB2018100605: Cross-site scripting in Ultimate Member – User Profile & Membership Plugin for WordPress Low
Patched
06.10.2018
SB2018081021: Cross-site scripting in Ultimate Member – User Profile & Membership Plugin for WordPress Low
Patched
10.08.2018
SB2018080814: Arbitrary file upload in Ultimate Member – User Profile & Membership Plugin for WordPress High
Patched
08.08.2018
SB2018021423: Multiple vulnerabilities in in Ultimate Member – User Profile & Membership Plugin for WordPress Low
Patched
14.02.2018
SB2015120203: Cross-site scripting in Ultimate Member – User Profile & Membership Plugin for WordPress Low
Patched
02.12.2015
SB2015082003: Cross-site scripting in Ultimate Member – User Profile & Membership Plugin for WordPress Low
Patched
20.08.2015
SB2015061802: Cross-site scripting in Ultimate Member – User Profile & Membership Plugin for WordPress Low
Patched
18.06.2015