cleantalk
Vulnerabilities and Security Researches

WP-Members Membership Plugin, 8fa7026d8724f0e4f2042248f4d9e27dc71db286

CVE, Research URL

8fa7026d8724f0e4f2042248f4d9e27dc71db286

Home page URL

Security reports for WP-Members Membership Plugin

Application

WP-Members Membership Plugin

Published on
Jan 07, 2014
Research Description
WP-Members Membership Plugin [wp-members] < 2.8.10 WP-Members Membership Plugin <= 2.8.9 - Reflected Cross-Site Scripting The WP Members plugin for WordPress is vulnerable to Multiple Cross-Site Scripting via several parameters in versions before 2.8.10 due to insufficient input sanitization and output escaping. This makes it possible for attackers to inject arbitrary web scripts that execute in a victim's browser.
Affected versions
max 2.8.10.
Status
vulnerable
Previous vulnerability researches
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2024-37271) , Jul 01, 2024
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2023-33999) , Jun 14, 2026
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2022-4974) , Nov 15, 2024
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2024-37105) , Jun 24, 2024
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2025-54740) , Aug 17, 2025
New vulnerability
Crelly Slider (939a309f-af0e-4ad4-bd25-c00884d64244) , Jun 16, 2026
Crelly Slider (317d0c1690e157db08672ce6e5d57d3de655f951) , Jun 16, 2026
Crelly Slider (f4ed15eda2d328c370f89897d7101137944dcdfb) , Jun 16, 2026
Woopra Analytics Plugin (ef76bfd9d1cbccf014412cf89b16db92db63e452) , Jun 16, 2026
Woopra Analytics Plugin (fe88ceff285c097ba508b1fb87390208ea8a4660) , Jun 16, 2026