CVE-2022-45083

Name of the Vulnerable Software and Affected Versions ProfilePress Membership Team Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress versions n/a through 4.3.2

Description The issue is related to Deserialization of Untrusted Data, which affects the Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress.

Recommendations For versions n/a through 4.3.2, update to a version later than 4.3.2 to resolve the issue. As a temporary workaround, consider restricting access to untrusted data deserialization functions until a patch is available.