Vulnerabilities > CVE-2024-37107 - Unspecified vulnerability in Wishlistmember Wishlist Member X

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

wishlistmember

NVD

Published: 2024-06-24

Updated: 2024-11-21

Summary

Improper Privilege Management vulnerability in Membership Software WishList Member X allows Privilege Escalation.This issue affects WishList Member X: from n/a before 3.26.7.

Vulnerable Configurations

Part	Description	Count
Application	Wishlistmember Wishlistmember Wishlist Member X *	1

References

https://patchstack.com/database/vulnerability/wishlist-member-x/wordpress-wishlist-member-x-plugin-3-25-1-authenticated-privilege-escalation-vulnerability?_s_id=cve
https://patchstack.com/database/vulnerability/wishlist-member-x/wordpress-wishlist-member-x-plugin-3-25-1-authenticated-privilege-escalation-vulnerability?_s_id=cve