VulnTitan VulnTitan Security command center
Plugin Vulnerability Hub
Plugin 72 known issues Latest disclosed Apr 03, 2026

Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Vulnerabilities

Review known vulnerability records for the WordPress plugin Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin (`ultimate-member`), including severity, CVE references, affected versions, and patch status.

Recent tracked CVEs on this page include CVE-2025-15064, CVE-2026-4248 and CVE-2026-39659, so operators can jump from disclosure to patch validation without scanning the full feed first.

View on WordPress.org Back to Feed
Known Records
72
High or Critical
24
Patch Coverage
100%
Last Updated
Apr 22, 2026
Priority CVE Quick Links

Fast paths into Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin CVE reports

Start with the highest-signal CVE records for this WordPress plugin before scanning the full vulnerability feed.

Indexed CVEs
56
CVE-2020-36157 Critical 2.1.12
CVE-2020-36157 Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Privilege Escalation

Ultimate Member <= 2.1.11 - Unauthenticated Privilege Escalation via User Roles

CVE-2020-36155 Critical 2.1.12
CVE-2020-36155 Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Privilege Escalation

Ultimate Member <= 2.1.11 - Unauthenticated Privilege Escalation via User Meta

CVE-2020-36156 Critical 2.1.12
CVE-2020-36156 Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Privilege Escalation

Ultimate Member <= 2.1.11 - Authenticated Privilege Escalation via Profile Update

CVE-2024-1071 Critical 2.8.3
CVE-2024-1071 Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin SQL Injection

Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin 2.1.3 - 2.8.2 - Unauthenticated SQL Injection

CVE-2023-3460 Critical 2.6.7
CVE-2023-3460 Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Privilege Escalation

Ultimate Member <= 2.6.6 - Privilege Escalation via Arbitrary User Meta Updates

CVE-2019-10270 High 2.0.40
CVE-2019-10270 Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Privilege Escalation

Ultimate Member <= 2.0.39 - Privilege Escalation

CVE-2019-10673 High 2.0.40
CVE-2019-10673 Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Cross-Site Request Forgery

Ultimate Member <= 2.0.39 - Cross-Site Request Forgery

CVE-2018-10233 High 2.0.7
CVE-2018-10233 Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin Cross-Site Request Forgery

Ultimate Member <= 2.0.6 - Multiple Cross-Site Request Forgery Issues

Coverage Snapshot

What this page helps you verify fast

This hub clusters every indexed record for Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.

Patch Visibility
72 records include a published patch path, leaving 0 with no listed safe release yet.
Severity Mix
10 critical and 14 high severity findings.
Recent CVEs
CVE-2025-15064, CVE-2026-4248 and CVE-2026-39659
Reference Workflow
Jump from the hub into the full report when you need remediation notes, exploit context, CVSS vectors, or source references.
Triage First

Open the records most likely to drive action

These recent records surface the CVE strings, patch cues, and direct report links most operators need first.

Known Vulnerabilities

Reports for Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin

Sorted by latest disclosure date so newly published issues surface first.

Plugin Medium Patched: Yes CVE-2025-15064
CVE-2025-15064: Ultimate Member <= 2.11.1 - Authenticated (Subscriber+) Stored Cross-Site Scripting via DOM Gadgets

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the user description field in all versions up to, and including, 2.11.1 due to insufficient inp...

Published
Apr 03, 2026
Patched Release
2.11.2
Affected Versions
Versions up to 2.11.1
Next Step
Update to 2.11.2 or newer if supported.
Open CVE-2025-15064 Report Open CVE Reference
Plugin High Patched: Yes CVE-2026-4248
CVE-2026-4248: Ultimate Member <= 2.11.2 - Authenticated (Contributor+) Sensitive Information Exposure to Account Takeover via Shortcode Template Tag

The Ultimate Member plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.2. This is due to the '{usermeta:password_reset_link}' template tag being processed within post content via the '[um_loggedin]' shortcode, which gen...

Published
Mar 27, 2026
Patched Release
2.11.3
Affected Versions
Versions up to 2.11.2
Next Step
Update to 2.11.3 or newer if supported.
Open CVE-2026-4248 Report Open CVE Reference
Plugin Medium Patched: No CVE-2026-39659
CVE-2026-39659: Ultimate Member <= 2.11.3 - Missing Authorization

The Ultimate Member plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in versions up to, and including, 2.11.3. This makes it possible for unauthenticated attackers to perform an unauthorized action.

Published
Feb 17, 2026
Patched Release
Not published
Affected Versions
Versions up to 2.11.3
Next Step
Open the full report for remediation notes and references.
Open CVE-2026-39659 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2026-1404
CVE-2026-1404: Ultimate Member <= 2.11.1 - Reflected Cross-Site Scripting via Filter Parameters

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the filter parameters (e.g., 'filter_first_name') in all versions up to, and including, 2.11...

Published
Feb 17, 2026
Patched Release
2.11.2
Affected Versions
Versions up to 2.11.1
Next Step
Update to 2.11.2 or newer if supported.
Open CVE-2026-1404 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2025-13220
CVE-2025-13220: Ultimate Member <= 2.11.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode attributes in all versions up to, and including, 2.11.0 due to insuffici...

Published
Dec 20, 2025
Patched Release
2.11.1
Affected Versions
Versions up to 2.11.0
Next Step
Update to 2.11.1 or newer if supported.
Open CVE-2025-13220 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2025-12492
CVE-2025-12492: Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin <= 2.11.0 - Unauthenticated Sensitive Information Exposure

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.0 via the ajax_get_members function. This is due to t...

Published
Dec 19, 2025
Patched Release
2.11.1
Affected Versions
Versions up to 2.11.0
Next Step
Update to 2.11.1 or newer if supported.
Open CVE-2025-12492 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2025-14081
CVE-2025-14081: Ultimate Member <= 2.11.0 - Authenticated (Subscriber+) Profile Privacy Setting Bypass

The Ultimate Member plugin for WordPress is vulnerable to Profile Privacy Setting Bypass in all versions up to, and including, 2.11.0. This is due to a flaw in the secure fields mechanism where field keys are stored in the allowed fields list before the `required_perm` check is a...

Published
Dec 16, 2025
Patched Release
2.11.1
Affected Versions
Versions up to 2.11.0
Next Step
Update to 2.11.1 or newer if supported.
Open CVE-2025-14081 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2025-13217
CVE-2025-13217: Ultimate Member <= 2.11.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'value'

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the YouTube Video 'value' field in all versions up to, and including, 2.11.0. This is due to insuffici...

Published
Dec 16, 2025
Patched Release
2.11.1
Affected Versions
Versions up to 2.11.0
Next Step
Update to 2.11.1 or newer if supported.
Open CVE-2025-13217 Report Open CVE Reference
Plugin High Patched: Yes CVE-2025-47691
CVE-2025-47691: Ultimate Member <= 2.10.3 - Authenticated (Administrator+) Arbitrary Function Call

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Arbitrary Function Calls in all versions up to, and including, 2.10.3. This is due to the plugin not properly restricting funct...

Published
May 07, 2025
Patched Release
2.10.4
Affected Versions
Versions up to 2.10.3
Next Step
Update to 2.10.4 or newer if supported.
Open CVE-2025-47691 Report Open CVE Reference
Plugin High Patched: Yes
Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin <= 2.10.1 - Unauthenticated Blind SQL Injection

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to blind SQL Injection via the search parameter in all versions up to, and including, 2.10.1 due to insufficient escaping on the u...

Published
Apr 16, 2025
Patched Release
2.10.2
Affected Versions
Versions up to 2.10.1
Next Step
Update to 2.10.2 or newer if supported.
Open Full Report
Plugin High Patched: Yes CVE-2025-1702
CVE-2025-1702: Ultimate Member <= 2.10.0 - Unauthenticated SQL Injection via search Parameter

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the 'search' parameter in all versions up to, and including, 2.10.0 due to insufficient escaping o...

Published
Mar 04, 2025
Patched Release
2.10.1
Affected Versions
Versions up to 2.10.0
Next Step
Update to 2.10.1 or newer if supported.
Open CVE-2025-1702 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2024-12276
CVE-2024-12276: Ultimate Member <= 2.9.2 - Authenticated SQL Injection

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to second-order SQL Injection via filenames in all versions up to, and including, 2.9.2 due to insufficient escaping on the user s...

Published
Feb 20, 2025
Patched Release
2.10.0
Affected Versions
Versions up to 2.9.2
Next Step
Update to 2.10.0 or newer if supported.
Open CVE-2024-12276 Report Open CVE Reference