Description

WordPress Plugin Ultimate Member-User Profile & Membership is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin Ultimate Member-User Profile & Membership version 1.2.5 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.2.6 or latest

References

Related Vulnerabilities