Vulnerability CVE-2020-36156

Vulnerability CVE-2020-36156

Published: 2021-01-04

Description:

Type:

(Improper Privilege Management)

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.5/10	6.4/10	8/10

Affected software
Ultimatemember -> Ultimate member

https://wordpress.org/plugins/ultimate-member/#developers

https://wpscan.com/vulnerability/dd4c4ece-7206-4788-8747-f0c0f3ab0a53

https://www.wordfence.com/blog/2020/11/critical-privilege-escalation-vulnerabilities-affect-100k-sites-using-ultimate-member-plugin/