CVE-2026-25308 | wp.insider Simple Membership Plugin up to 4.6.9 on WordPress authorization

Inserito da Angelo Barbosa | Feb 19, 2026 | CVE

A vulnerability was found in wp.insider Simple Membership Plugin up to 4.6.9 on WordPress and classified as critical. The affected element is an unknown function. The manipulation results in missing authorization.

This vulnerability is known as CVE-2026-25308. It is possible to launch the attack remotely. No exploit is available.

CVE-2026-25308 | wp.insider Simple Membership Plugin up to 4.6.9 on WordPress authorization

Post correlati

CVE-2024-0985 | PostgreSQL up to 12.17/13.13/14.10/15.5 privilege dropping / lowering errors

CVE-2024-1168 | SEOPress Plugin up to 7.9 on WordPress Social Image URL cross site scripting

CVE-2024-24567 | Vyper raw_call value Privilege Escalation

CVE-2025-11632 | jgrietveld Call Now Button Plugin up to 1.5.4 on WordPress authorization