CVE-2018-0589

Summary

Ultimate Member plugin prior to version 2.0.4 for WordPress allows remote authenticated attackers to bypass access restriction to add a new form in the 'Forms' page via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
Ultimate MemberUltimate Memberprior to version 2.0.4affected

Weaknesses

  • Fails to restrict access

ADP Enrichment

CVE Program Container

Additional References

References