PT-2026-4084 · WordPress · Memberpress Discord Addon
Published
2026-01-22
·
Updated
2026-01-23
·
CVE-2025-68838
CVSS v3.1
7.1
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
MemberPress Discord Addon versions through 1.1.4
Description
The MemberPress Discord Addon contains a flaw related to improper input handling during web page generation, which allows for Reflected Cross-site Scripting (XSS). This issue could potentially allow an attacker to inject malicious scripts into web pages viewed by other users. The vulnerable component is susceptible to exploitation through crafted input.
Recommendations
Update MemberPress Discord Addon to a version newer than 1.1.4.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Memberpress Discord Addon