Improper access control in Ultimate Member – User Profile & Membership Plugin for WordPress

Дата публикации:24.01.2020
Всего просмотров:269
Опасность:
Средняя
Наличие исправления: Да
Количество уязвимостей:1
CVSSv3 рейтинг: 5.3 [CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]
CVE ID: CVE-2020-6859
Вектор эксплуатации: Удаленная
Воздействие: Обход ограничений безопасности
Компрометация системы
CWE ID: Нет данных
Наличие эксплоита: Нет данных
Уязвимые продукты: Ultimate Member – User Profile & Membership Plugin
Уязвимые версии: Ultimate Member – User Profile & Membership Plugin версии 2.1.2, 2.1.1, 2.1.0, 2.1.0-rc.1, 2.0.56, 2.0.55, 2.0.54, 2.0.53, 2.0.52, 2.0.51, 2.0.50, 2.0.49, 2.0.48, 2.0.47, 2.0.46, 2.0.45, 2.0.44, 2.0.43, 2.0.42, 2.0.41, 2.0.9, 2.0.5, 2.0.40, 2.0.4, 2.0.39, 2.0.38, 2.0.37, 2.0.36, 2.0.35, 2.0.34, 2.0.33, 2.0.32, 2.0.31, 2.0.30, 2.0.29, 2.0.28, 2.0.27, 2.0.26, 2.0.25, 2.0.24, 2.0.23, 2.0.22, 2.0.21, 2.0.19, 2.0.18, 2.0.17, 2.0.16, 2.0.15, 2.0.14, 2.0.13, 2.0.12, 2.0.11, 2.0.10, 1.3.89, 1.3.88, 1.3.87, 1.3.85, 1.3.84, 1.3.83, 1.3.82, 1.3.81, 1.3.80, 1.3.79, 1.3.78, 1.3.77, 1.3.73, 1.3.72, 1.3.71, 1.3.70, 1.3.69, 1.3.68, 1.3.67, 1.3.66, 1.3.65, 1.3.64, 1.3.63, 1.3.61, 1.3.60, 1.3.59, 1.3.58, 1.3.54, 1.3.53, 1.3.52, 1.3.51, 1.3.50, 1.3.49, 1.3.48, 1.3.47, 1.3.44, 1.3.39, 1.3.38, 1.3.37, 1.3.36, 1.3.35, 1.3.34, 1.3.33, 1.3.32, 1.3.31, 1.3.30, 1.3.29, 1.3.28, 1.3.27, 1.3.26, 1.3.25, 1.3.24, 1.3.23, 1.3.22, 1.3.21, 1.3.20, 1.3.19, 1.3.18, 1.3.17, 1.3.16, 1.3.15, 1.3.14, 1.3.13, 1.3.12, 1.3.11, 1.3.1, 1.3.0, 1.2.997, 1.2.996, 1.2.995, 1.2.994, 1.2.993, 1.2.991, 1.2.99, 1.2.98, 1.2.97, 1.2.96, 1.2.95, 1.2.94, 1.2.93, 1.2.92, 1.2.91, 1.2.9, 1.2.8, 1.2.7, 1.2.6, 1.2.5, 1.2.4, 1.2.3, 1.2.2, 1.2.1, 1.2, 1.1.6, 1.1.5, 1.1.4, 1.1.3, 1.1.2, 1.1.1, 1.1.0, 1.0.96, 1.0.95, 1.0.94, 1.0.93, 1.0.92, 1.0.91, 1.0.90, 1.0.89, 1.0.88, 1.0.87, 1.0.86, 1.0.85, 1.0.84, 1.0.83, 1.0.82, 1.0.81, 1.0.80, 1.0.79, 1.0.78, 1.0.77, 1.0.76, 1.0.75, 1.0.74, 1.0.73, 1.0.72, 1.0.71, 1.0.70, 1.0.69, 1.0.68, 1.0.67, 1.0.66, 1.0.65, 1.0.64, 1.0.63, 1.0.62, 1.0.61, 1.0.60, 1.0.59, 1.0.58, 1.0.57, 1.0.56, 1.0.55, 1.0.54, 1.0.53, 1.0.52, 1.0.51, 1.0.50, 1.0.49, 1.0.48, 1.0.47, 1.0.46, 1.0.45, 1.0.44, 1.0.43, 1.0.42, 1.0.41, 1.0.40, 1.0.39, 1.0.38, 1.0.37, 1.0.36, 1.0.35, 1.0.34, 1.0.33, 1.0.32, 1.0.31, 1.0.30, 1.0.29, 1.0.28, 1.0.27, 1.0.26, 1.0.25, 1.0.24, 1.0.23, 1.0.22, 1.0.21, 1.0.20, 1.0.19, 1.0.18, 1.0.17, 1.0.16, 1.0.15, 1.0.10, 1.0.0
Описание:

Improper access control in Ultimate Member – User Profile & Membership Plugin for WordPress

URL производителя: https://profiles.wordpress.org/ultimatemember
Решение: Установите исправление с сайта производителя.
Ссылки: https://www.cybersecurity-help.cz/vdb/SB2020012404