Vulnerabilities > CVE-2018-0589 - Unspecified vulnerability in Ultimatemember User Profile & Membership

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
ultimatemember
NVD
Published: 2018-05-14
Updated: 2019-11-20

Summary

Ultimate Member plugin prior to version 2.0.4 for WordPress allows remote authenticated attackers to bypass access restriction to add a new form in the 'Forms' page via unspecified vectors.

Vulnerable Configurations

Part Description Count
Application
Ultimatemember
193

References