WordPress Plugin Vulnerabilities

WP-Members Membership Plugin < 3.4.9.4 - Unprotected Storage of Potentially Sensitive Files

Description

The WP-Members Membership Plugin plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 3.4.9.3 due to the plugin uploading user supplied files to a publicly accessible directory in wp-content without any restrictions. This makes it possible for unauthenticated attackers to view files uploaded by other users which may contain sensitive information.

Affects Plugins

Plugin icon
wp-members
Fixed in 3.4.9.4

References

CVE
CVE-2024-2920
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/4319fa2e-8826-4100-9156-cbe80582367e

Classification

Type
SENSITIVE DATA DISCLOSURE
OWASP top 10
A3: Sensitive Data Exposure
CWE
CWE-200
CVSS
5.3 (medium)

Miscellaneous

Original Researcher
Tim Coen
Verified
No
WPVDB ID
5919378e-9065-4893-a486-cda420d52a56

Timeline

Publicly Published
2024-04-25 (about 2 years ago)
Added
2024-04-25 (about 2 years ago)
Last Updated
2024-04-25 (about 2 years ago)

Other

Published
Title
Published
2024-05-09
Title
Easy Digital Downloads < 3.2.12 - Unauthenticated Sensitive Information Exposure
Published
2025-04-03
Title
TailPress <= 0.4.4 - Unauthenticated Sensitive Information Exposure
Published
2026-04-23
Title
KiviCare – Clinic & Patient Management System (EHR) < 4.3.0 - Authenticated (Subscriber+) Insecure Direct Object Reference
Published
2021-11-29
Title
CorreosExpress <= 2.6.0 - Sensitive Information Disclosure
Published
2024-11-08
Title
Quform - WordPress Form Builder < 2.21.0 - Unauthenticated Sensitive Information Exposure