Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin WPCOM Member Malicious Code - CVE-2024-6297 - Vulnerability Database
WP Plugin Wpcom Member

WordPress Plugin WPCOM Member Malicious Code - CVE-2024-6297

Critical
Reference: CVE-2024-6297
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-6297
Title: WordPress Plugin WPCOM Member Malicious Code
Overview:

WordPress Plugin WPCOM Member contains malicous code. Exploiting this issue may allow an attacker to create a new administrative user account thus compromising the affected application and possibly the webserver or computer. WordPress Plugin WPCOM Member version 1.3.16 is affected prior versions may also be affected.