PT-2026-33181 · WordPress · Profilepress
Supakiad S
·
Published
2026-04-15
·
Updated
2026-04-16
·
CVE-2026-4949
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
ProfilePress versions prior to 4.16.13
Description
The plugin is affected by missing authorization. The
process checkout() function fails to properly enforce the active status check of a plan when the change plan sub id parameter is provided. This allows authenticated attackers with Subscriber-level access or higher to subscribe to inactive membership plans by submitting an arbitrary value for the change plan sub id variable during the checkout request.Recommendations
Update to a version later than 4.16.12.
Fix
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Profilepress