Browse all 5 CVE security advisories affecting MemberPress. AI-powered Chinese analysis, POCs, and references for each vulnerability.
MemberPress is a WordPress plugin designed to create membership sites and restrict content access. Historically, it has been vulnerable to multiple security issues including remote code execution, cross-site scripting, and privilege escalation vulnerabilities. The plugin has accumulated five CVEs, with some allowing attackers to bypass access controls or execute malicious code. While no major public incidents have been widely documented, the consistent discovery of vulnerabilities highlights the importance of regular updates and proper input sanitization. The plugin's core functionality involves managing user permissions and content protection, making it a target for attackers seeking unauthorized access to restricted content or website takeover.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-11299 | Memberpress <= 1.11.37 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure — MemberpressCWE-200 | 5.3 | Medium | 2025-04-22 |
| CVE-2024-5024 | MemberPress <= 1.11.29 - Reflected Cross-Site Scripting via mepr_screenname and mepr_key Parameters — MemberpressCWE-79 | 6.1 | Medium | 2024-08-30 |
| CVE-2024-5025 | MemberPress <= 1.11.29 - Authenticated (Contributor+) Stored Cross-Site Scripting via arglist Parameter — MemberpressCWE-79 | 6.4 | Medium | 2024-05-22 |
| CVE-2024-5031 | MemberPress <= 1.11.29 - Authenticated (Contributor+) Blind Server-Side Request Forgery via mepr-user-file Shortcode — MemberpressCWE-918 | 8.5 | High | 2024-05-22 |
| CVE-2024-1412 | Memberpress <= 1.11.24 - Reflected Cross-Site Scripting via message and error — MemberpressCWE-79 | 6.1 | Medium | 2024-04-09 |
This page lists every published CVE security advisory associated with MemberPress. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.