Ultimate Member <= 1.0.78 - Multiple Vulnerabilities



Description
Ultimate Member Plugin version 1.0.78 has several security vulnerabilities that allow unauthenticated users to delete files and upload files, which can ultimately lead to remote code execution.

Affects Plugin

References

URL http://www.pritect.net/blog/ultimate-member-plugin-1-0-78-critical-security-vulnerability

Classification

Type MULTI

Miscellaneous

Submitter James Golovich
Submitter Website http://www.pritect.net
Submitter Twitter Pritect
Views 18904
Verified No
WPVDB ID 7850

Timeline

Publicly Published 2015-03-16 (about 5 years ago)
Added 2015-03-17 (about 5 years ago)
Last Updated 2019-10-21 (7 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin