Vulnerabilities > Membersonic

DATE CVE VULNERABILITY TITLE RISK
2019-09-16 CVE-2016-10971 Improper Privilege Management vulnerability in Membersonic 1.2/1.301
The MemberSonic Lite plugin before 1.302 for WordPress has incorrect login access control because only knowlewdge of an e-mail address is required.
network
low complexity
membersonic CWE-269
critical
 9.8
9.8