cleantalk
Vulnerabilities and Security Researches

WP-Members Membership Plugin, CVE-2025-57973

CVE, Research URL

CVE-2025-57973

Home page URL

Security reports for WP-Members Membership Plugin

Application

WP-Members Membership Plugin

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chad Butler WP-Members wp-members allows Stored XSS.This issue affects WP-Members: from n/a through <= 3.5.4.2.
Affected versions
max 3.5.4.3.
Status
vulnerable
Previous vulnerability researches
HT Mega – Absolute Addons for WPBakery Page Builder (CVE-2025-53463) , Apr 24, 2026
HT Mega – Absolute Addons for WPBakery Page Builder (CVE-2025-53206) , Jul 02, 2025
New vulnerability
Kubio AI Page Builder (CVE-2025-8487) , Apr 25, 2026
PlayerJS (CVE-2025-58651) , Apr 25, 2026
PilotPress (CVE-2025-58238) , Apr 25, 2026
Real Estate Manager – Property Listing and Agent Management (CVE-2025-58253) , Apr 25, 2026
MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution (CVE-2025-58702) , Apr 25, 2026