CVE-2024-1071
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-1071
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to SQL Injection via the 'sorting' parameter in versions 2.1.3 to 2.8.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
WordPress Plugin Ultimate Member 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress Plugin Ultimate Member 2.1.3 版本到 2.8.2 版本存在安全漏洞,该漏洞源于对用户提供的参数转义不充分以及对现有 SQL 查询缺乏充分的准备,容易通过“排序”参数受到 SQL 注入攻击。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| ultimatemember | Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin | 2.1.3 ~ 2.8.2 | - |
II. Public POCs for CVE-2024-1071
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | Ultimate Member Unauthorized Database Access / SQLi | https://github.com/gbrsh/CVE-2024-1071 | POC Details |
| 2 | CVE-2024-1071 with Docker | https://github.com/Trackflaw/CVE-2024-1071-Docker | POC Details |
| 3 | CVE-2024-1071 | https://github.com/Matrexdz/CVE-2024-1071 | POC Details |
| 4 | None | https://github.com/Matrexdz/CVE-2024-1071-Docker | POC Details |
| 5 | CVE-2024-1071 | https://github.com/Nadjibbtabani/CVE-2024-1071 | POC Details |
| 6 | None | https://github.com/Nadjibbtabani/CVE-2024-1071-Docker | POC Details |
| 7 | Proof of concept : CVE-2024-1071: WordPress Vulnerability Exploited | https://github.com/fa-rrel/CVE-2024-1071-SQL-Injection | POC Details |
| 8 | None | https://github.com/Dogu589/WordPress-Exploit-CVE-2024-1071 | POC Details |
| 9 | wp/ultimate-member - SQL Injection Vulnerability Exploit Script. | https://github.com/Spid3heX/CVE-2024-1071-PoC-Script | POC Details |
| 10 | Proof of concept : CVE-2024-1071: WordPress Vulnerability Exploited | https://github.com/gh-ost00/CVE-2024-1071-SQL-Injection | POC Details |
| 11 | The Ultimate Member - User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to SQL Injection via the ‘sorting’ parameter in versions 2.1.3 to 2.8.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-1071.yaml | POC Details |
| 12 | None | https://github.com/dogucyber/WordPress-Exploit-CVE-2024-1071 | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-1071
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same product: Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin
- CVE-2025-15064
Ultimate Member <= 2.11.1 - Authenticated (Subscriber+) Stor - CVE-2026-4248
Ultimate Member <= 2.11.2 - Authenticated (Contributor+) Sen - CVE-2026-1404
Ultimate Member <= 2.11.1 - Reflected Cross-Site Scripting v - CVE-2025-13220
Ultimate Member <= 2.11.0 - Authenticated (Contributor+) Sto - CVE-2025-12492
Ultimate Member – User Profile, Registration, Login, Member
Same vendor: ultimatemember
- CVE-2025-15064
Ultimate Member <= 2.11.1 - Authenticated (Subscriber+) Stor - CVE-2026-4248
Ultimate Member <= 2.11.2 - Authenticated (Contributor+) Sen - CVE-2026-1404
Ultimate Member <= 2.11.1 - Reflected Cross-Site Scripting v - CVE-2025-13746
ForumWP – Forum & Discussion Board <= 2.1.6 - Authenticated - CVE-2025-13220
Ultimate Member <= 2.11.0 - Authenticated (Contributor+) Sto
V. Comments for CVE-2024-1071
No comments yet