Vulnerabilities > Ithemes > Membership > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-28 | CVE-2015-9372 | Cross-site Scripting vulnerability in Ithemes Membership Membership Add-on for iThemes Exchange before 1.3.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). | 4.3 |