| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-68838 | WordPress MemberPress Discord Addon plugin <= 1.1.4 - Reflected Cross Site Scripting (XSS) vulnerability | expresstechsoftware | MemberPress Discord Addon | - | - | 2026-01-22 16:52:09 | Deep Dive |
| CVE-2025-39407 | WordPress Memberpress plugin < 1.12.0 - Reflected Cross Site Scripting (XSS) vulnerability | Caseproof, LLC | MemberPress | High | 7.1 | 2025-05-19 19:06:23 | Deep Dive |
| CVE-2024-11299 | Memberpress <= 1.11.37 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure | MemberPress | Memberpress | Medium | 5.3 | 2025-04-22 11:12:22 | Deep Dive |
| CVE-2025-32605 | WordPress MemberPress Discord Addon Plugin <= 1.1.1 - Reflected Cross Site Scripting (XSS) vulnerability | expresstechsoftware | MemberPress Discord Addon | High | 7.1 | 2025-04-17 15:47:19 | Deep Dive |
| CVE-2024-43956 | WordPress MemberPress plugin <= 1.11.34 - Broken Access Control vulnerability | Caseproof, LLC | MemberPress | Medium | 6.5 | 2024-11-01 14:17:17 | Deep Dive |
| CVE-2024-5024 | MemberPress <= 1.11.29 - Reflected Cross-Site Scripting via mepr_screenname and mepr_key Parameters | MemberPress | Memberpress | Medium | 6.1 | 2024-08-30 03:24:16 | Deep Dive |
| CVE-2024-5025 | MemberPress <= 1.11.29 - Authenticated (Contributor+) Stored Cross-Site Scripting via arglist Parameter | MemberPress | Memberpress | Medium | 6.4 | 2024-05-22 08:31:23 | Deep Dive |
| CVE-2024-5031 | MemberPress <= 1.11.29 - Authenticated (Contributor+) Blind Server-Side Request Forgery via mepr-user-file Shortcode | MemberPress | Memberpress | High | 8.5 | 2024-05-22 08:31:22 | Deep Dive |
| CVE-2024-1412 | Memberpress <= 1.11.24 - Reflected Cross-Site Scripting via message and error | MemberPress | Memberpress | Medium | 6.1 | 2024-04-09 19:05:06 | Deep Dive |