Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

s2Member — Vulnerabilities & Security Advisories 5

All 5 CVE vulnerabilities found in s2Member, with AI-generated Chinese analysis, references, and POCs.

Vendor: Cristián Lávaque

CVE IDTitleCVSSSeverityPublished
CVE-2025-58998 WordPress s2Member Plugin <= 250701 - PHP Object Injection Vulnerability CWE-502 9.8 -2025-11-06
CVE-2025-62023 WordPress s2Member plugin <= 250905 - Remote Code Execution (RCE) vulnerability CWE-94 9.0 Critical2025-10-22
CVE-2025-32137 WordPress s2Member plugin <= 250419 - Local File Inclusion vulnerability CWE-23 4.9 Medium2025-04-04
CVE-2025-26879 WordPress s2Member Plugin <= 241216 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 6.1 -2025-03-03
CVE-2024-51815 WordPress s2Member plugin <= 241114 - Remote Code Execution (RCE) vulnerability CWE-94 9.0 Critical2024-12-06

All 5 known CVE vulnerabilities affecting s2Member with full Chinese analysis, references, and POCs where available.