Known vulnerabilities in Ultimate Member Ultimate Member - User Profile & Membership Plugin 2.0.50

Vendor: Ultimate Member
Website: https://profiles.wordpress.org/ultimatemember/
Total Security Bulletins: 7

Security bulletins (7)

Secuity bulletin Severity Status Published
SB2025030729: SQL injection in Ultimate Member plugin for WordPress High
Patched
07.03.2025
SB2025012281: Multiple vulnerabilities in Ultimate Member plugin for WordPress Medium
Patched
22.01.2025
SB2022103131: Multiple vulnerabilities in Ultimate Member – User Profile & Membership Plugin for WordPress Medium
Patched
31.10.2022
SB2020081301: Open redirect in Ultimate Member – User Profile & Membership Plugin for WordPress Medium
Patched
13.08.2020
SB2020012404: Improper access control in Ultimate Member – User Profile & Membership Plugin for WordPress Medium
Patched
24.01.2020
SB2019072216: Cross-site scripting in Ultimate Member plugin for WordPress Low
Patched
22.07.2019
SB2019062409: Multiple vulnerabilities in Ultimate Member plugin for WordPress Low
Patched
24.06.2019