cleantalk
Vulnerabilities and Security Researches

WP-Members Membership Plugin, CVE-2025-50051

CVE, Research URL

CVE-2025-50051

Home page URL

Security reports for WP-Members Membership Plugin

Application

WP-Members Membership Plugin

Published on
Jun 20, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chad Butler WP-Members allows Stored XSS.This issue affects WP-Members: from n/a through 3.5.4.
Affected versions
Min -, max 3.5.4.1.
Status
vulnerable
Previous vulnerability researches
Responsive Filterable Portfolio (CVE-2019-25221) , Dec 14, 2024
Responsive Filterable Portfolio (CVE-2023-2119) , Jun 07, 2024
Responsive Filterable Portfolio (CVE-2024-51785) , Nov 08, 2024
New vulnerability
Hide Admin Bar From Front End (CVE-2025-53267) , Jul 03, 2025
WP Visual Sitemap (CVE-2025-53290) , Jul 03, 2025
ElementsKit Elementor addons (CVE-2025-4479) , Jul 03, 2025
Burst Statistics – Privacy-Friendly Analytics for WordPress (CVE-2025-53193) , Jul 03, 2025
WPB Product Categories Slider for WooCommerce – Display Categories Slider on Any Page (CVE-2025-53281) , Jul 03, 2025