Archives

Wishlist Member Vulnerability (High) – CVE-2024-37108

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors WishList Member (plugin slug: wishlist-member-x) versions earlier than 3.26.7 are affected by CVE-2024-37108, a High severity vulnerability (CVSS 8.1; vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H). The key risk is that an attacker only needs a...

Wishlist Member Vulnerability (High) – CVE-2024-37106

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors WishList Member X (WordPress plugin slug: wishlist-member-x) is affected by CVE-2024-37106, rated High severity (CVSS 7.2, vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N). In versions prior to 3.26.7, an attacker can reach vulnerable functionality...

Wishlist Member Vulnerability (Medium) – CVE-2024-37113

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors CVE-2024-37113 is a Medium-severity information exposure issue (CVSS 5.3) affecting WishList Member X (WordPress plugin slug: wishlist-member-x) in all versions prior to 3.26.7. The primary attack path is straightforward: an unauthenticated attacker (no...

Wishlist Member Vulnerability (Critical) – CVE-2024-37109

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors WishList Member (wishlist-member-x) has a Critical vulnerability (CVSS 9.9) that allows authenticated attackers with Subscriber-level access (or higher) to achieve Remote Code Execution in versions prior to 3.26.7. In practical terms, an attacker only...

WooCommerce Amazon Affiliates – WordPress Plugin Vulnerability (Med…

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors WooCommerce Amazon Affiliates (WZone) (WordPress plugin slug: woozone) is affected by CVE-2024-33547, a Medium severity issue (CVSS 4.3: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N). The primary attack path is through an authenticated WordPress...

« Older Entries

Next Entries »

Wishlist Member Vulnerability (High) – CVE-2024-37108

Wishlist Member Vulnerability (High) – CVE-2024-37106

Wishlist Member Vulnerability (Medium) – CVE-2024-37113

Wishlist Member Vulnerability (Critical) – CVE-2024-37109

WooCommerce Amazon Affiliates – WordPress Plugin Vulnerability (Med…

Recent Posts

Recent Comments

Categories

Meta

Location

Follow Us

Subscription

Success!