PT-2025-33384 · WordPress · Wp Membership

João Pedro S Alcântara

·

Published

2025-08-14

·

Updated

2025-08-15

·

CVE-2025-54717

Report an issue
CVSS v3.1
5.4
VectorAV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Name of the Vulnerable Software and Affected Versions:

WP Membership versions n/a through 1.6.3

Description:

The software contains a missing authorization flaw due to incorrectly configured access control security levels.

Recommendations:

Update WP Membership to a version later than 1.6.3.

Fix

Missing Authorization

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2025-54717

Affected Products

Wp Membership