Scott Kingsley Clark

**Name of the Vulnerable Software and Affected Versions** pmpro-membership-maps versions prior to 0.7 **Description** The issue allows users with at least the contributor role to leak sensitive information about users with a membership on the site. This is due to the lack of proper access control in the pmpro-membership-maps WordPress plugin. **Recommendations** For versions prior to 0.7, update to version 0.7 or later to resolve the issue. As a temporary workaround, consider restricting the contributor role's access to sensitive membership information until the update is applied.

**Name of the Vulnerable Software and Affected Versions** pmpro-member-directory versions prior to 1.2.6 **Description** The issue allows users with at least the contributor role to leak other users' sensitive information, including password hashes. **Recommendations** For versions prior to 1.2.6, update to version 1.2.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** kadence-blocks-pro versions prior to 2.3.8 **Description** The issue allows users with at least the contributor role to leak arbitrary options from the database using certain shortcode functionalities. **Recommendations** For versions prior to 2.3.8, update to version 2.3.8 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Advanced Custom Fields (ACF) WordPress plugin versions prior to 6.3 Advanced Custom Fields Pro WordPress plugin versions prior to 6.3 Description: The issue allows displaying custom field values for any post via shortcode without checking for the correct access. This could potentially lead to unauthorized access to sensitive information. Recommendations: For Advanced Custom Fields (ACF) WordPress plugin versions prior to 6.3, update to version 6.3 or later. For Advanced Custom Fields Pro WordPress plugin versions prior to 6.3, update to version 6.3 or later.

**Name of the Vulnerable Software and Affected Versions** The Events Calendar WordPress plugin versions prior to 6.4.0.1 The Events Calendar Pro WordPress plugin versions prior to 6.4.0.1 **Description** The issue allows users with at least the contributor role to leak details about events they should not have access to, including password-protected events and drafts. **Recommendations** For The Events Calendar WordPress plugin versions prior to 6.4.0.1, update to version 6.4.0.1 or later. For The Events Calendar Pro WordPress plugin versions prior to 6.4.0.1, update to version 6.4.0.1 or later.

**Name of the Vulnerable Software and Affected Versions** WooCommerce WordPress plugin versions prior to 8.6 **Description** The issue allows users with at least the contributor role to access products they should not have access to, including private, draft, and trashed products. **Recommendations** For versions prior to 8.6, update to version 8.6 or later to resolve the issue. As a temporary workaround, consider restricting the contributor role's access to products until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Meta Box WordPress plugin versions prior to 5.9.4 **Description** The issue allows users with at least the contributor role to access arbitrary custom fields assigned to other user's posts. **Recommendations** For versions prior to 5.9.4, update to version 5.9.4 or later to resolve the issue. As a temporary workaround, consider restricting the contributor role's access to custom fields until the update is applied.

**Name of the Vulnerable Software and Affected Versions** wp-schema-pro WordPress plugin versions prior to 2.7.16 **Description** The issue allows a contributor user to access custom fields on any post, regardless of post type or status, via a shortcode. This is due to the plugin not validating post access. **Recommendations** For versions prior to 2.7.16, update the wp-schema-pro WordPress plugin to version 2.7.16 or later to resolve the issue. As a temporary workaround, consider restricting access to the shortcode handler to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** User Registration WordPress plugin versions prior to 2.12 **Description** The issue allows users with at least the contributor role to render sensitive shortcodes, which can be used to generate and leak valid password reset URLs. This enables them to take over any accounts. **Recommendations** For versions prior to 2.12, update to version 2.12 or later to resolve the issue. As a temporary workaround, consider restricting the contributor role from accessing sensitive shortcodes until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Paid Memberships Pro WordPress plugin versions prior to 2.12.9 **Description** The issue allows users with at least the contributor role to leak other users' sensitive metadata. **Recommendations** For versions prior to 2.12.9, update to version 2.12.9 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Event Tickets and Registration WordPress plugin versions prior to 5.8.1 Events Tickets Plus WordPress plugin versions prior to 5.9.1 **Description** The issue allows users with at least the contributor role to leak the existence of certain events they shouldn't have access to, including draft, private, pending review, password-protected, and trashed events. **Recommendations** For Event Tickets and Registration WordPress plugin versions prior to 5.8.1, update to version 5.8.1 or later. For Events Tickets Plus WordPress plugin versions prior to 5.9.1, update to version 5.9.1 or later.

**Name of the Vulnerable Software and Affected Versions** Events Tickets Plus WordPress plugin versions prior to 5.9.1 **Description** The issue allows users with at least the contributor role to leak the attendees list on any post type, regardless of its status, such as draft, private, pending review, password-protected, and trashed posts. **Recommendations** For versions prior to 5.9.1, update to version 5.9.1 or later to resolve the issue. As a temporary workaround, consider restricting the contributor role's access to sensitive information until the update is applied.