Vulnerabilities > Cozmoslabs > Membership Content Restriction Paid Member Subscriptions > 2.13.3

DATE	CVE	VULNERABILITY TITLE	RISK
2025-01-14	CVE-2024-12919	Unspecified vulnerability in Cozmoslabs Membership & Content Restriction - Paid Member Subscriptions The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 2.13.7. network low complexity cozmoslabs critical	9.8
2024-12-18	CVE-2024-11291	Information Exposure vulnerability in Cozmoslabs Membership & Content Restriction - Paid Member Subscriptions The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.13.4 via the WordPress core search feature. network low complexity cozmoslabs CWE-200	5.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.