ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Paid Memberships Pro plugin <= 2.0.5 - Authenticated Open Redirect vulnerability

Product
Paid Memberships Pro
Description
Authenticated Open Redirect vulnerability found in WordPress Paid Memberships Pro plugin (versions <= 2.0.5).
Solution
Update the WordPress Paid Memberships Pro plugin to the latest available version (at least 2.0.6).
Classification
Type Open Redirection
OWASP Top 10 A10: Unvalidated Redirects and Forwards
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <= 2.0.5
Fixed In 2.0.6
Disclosure date
2019-06-11
Submitter
ThreatPress