ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Ultimate Member Plugin <= 1.3.64 - Local File Inclusion

Product
Ultimate Member
Description
This plugin is prone to a PHP file inclusion vulnerability.
Solution
Update the plugin.
Classification
Type Local File Inclusion
OWASP Top 10 A1: Injection
References
SumOfPwn
CVE
Name CVE-N/A
Versions
Affected In <= 1.3.64
Fixed In 1.3.65
Disclosure date
2016-07-10
Submitter
ThreatPress