Source: National Vulnerability Database

The Ultimate Member plugin for WordPress is vulnerable to directory traversal in versions up to, and including 2.5.0 due to insufficient input validation on the 'template' attribute used in shortcodes. This makes it possible for attackers with

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-3361

218 hits since 2022-11-30

PHP Vulns Source Ratio: 15% (8976 total, 674 propagated, 4488 filtered)