cleantalk
Vulnerabilities and Security Researches

Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction, CVE-2025-58600

CVE, Research URL

CVE-2025-58600

Home page URL

Security reports for Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction

Application

Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction

Published on
Sep 03, 2025
Research Description
Missing Authorization vulnerability in Cozmoslabs Paid Member Subscriptions allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Paid Member Subscriptions: from n/a through 2.15.9.
Affected versions
Min -, max 2.16.0.
Status
vulnerable
Previous vulnerability researches
LifePress (CVE-2025-53337) , Aug 24, 2025
New vulnerability
Get Cash (CVE-2025-58823) , Sep 07, 2025
WP Notification Bell (CVE-2025-58821) , Sep 07, 2025
Social Sharing Plugin – Kiwi (CVE-2025-58790) , Sep 07, 2025
WPB Image Widget (CVE-2025-58858) , Sep 07, 2025
Notification for Telegram (CVE-2025-58794) , Sep 07, 2025