Description

WordPress Plugin Ultimate Member-User Profile & Membership is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently view some user stats from the dashboard. WordPress Plugin Ultimate Member-User Profile & Membership version 1.3.83 is vulnerable; prior versions are also affected.

Remediation

Update to plugin version 1.3.84 or latest

References

Related Vulnerabilities