Multiple cross-site scripting (XSS) vulnerabilities in the iMember360 plugin 3.8.012 up to and including 3.9.001 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) decrypt or (2) encrypt parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
imember360 imember360 3.9.001 |
||
imember360 imember360 3.8.013 |
||
imember360 imember360 3.9.000 |
||
imember360 imember360 3.8.012 |
||
imember360 imember360 3.8.014 |