cleantalk
Vulnerabilities and Security Researches

Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress, CVE-2026-4949

CVE, Research URL

CVE-2026-4949

Home page URL

Security reports for Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress

Application

Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress

Published on
Apr 16, 2026
Research Description
The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 4.16.12. This is due to the 'process_checkout' function not properly enforcing the plan active status check when a 'change_plan_sub_id' parameter is provided. This makes it possible for authenticated attackers, with Subscriber-level access and above, to subscribe to inactive membership plans by supplying an arbitrary 'change_plan_sub_id' value in the checkout request.
Affected versions
max 4.16.13.
Status
vulnerable
Previous vulnerability researches
XO Event Calendar (CVE-2026-0556) , Apr 16, 2026
XO Event Calendar (92562c6c-94a4-427d-97dc-7f5ffddcb6d8) , Jun 07, 2024
New vulnerability
Royal Elementor Addons and Templates (CVE-2026-40763) , Apr 16, 2026
WP Google Street View (with 360° virtual tour) & Google maps + Local SEO (CVE-2026-0563) , Apr 16, 2026
AcyMailing – An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress (CVE-2026-3614) , Apr 16, 2026
Token of Trust: AI Identity Verification, Age Verification, and KYC (CVE-2026-2834) , Apr 16, 2026
Bitcoin Donate Button (CVE-2026-1380) , Apr 16, 2026