GCVE - cpe:2.3:a:wpswings:membership_for_woocommerce:*:*:*:*:*:wordpress:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:wpswings:membership_for_woocommerce:*:*:*:*:*:wordpress:*:*

part: a version: * update: *

Vendor	Wpswings (`325d4910-7fb8-5524-97f5-2fb5d0fe400a`)
Product	Membership For Woocommerce (`7cf68cb6-e143-5cfd-9202-9629e218bace`)
Edition	*
Language	*
Software edition	*
Target software	wordpress
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/wpswings/membership-for-woocommerce`	purl2cpe	2026-06-01 10:16:33.698875

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-4395`	vulnerable	2026-06-03 14:48:35.641041	Membership For WooCommerce < 2.1.7 - Unauthenticated Arbitrary File Upload The Membership For WooCommerce WordPress plugin before 2.1.7 does not validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as malicious PHP code, and achieve RCE. Published: 2023-01-30T20:31:42.219Z Updated: 2025-03-27T19:55:55.299Z Open on db.gcve.eu Reference links https://wpscan.com/vulnerability/80407ac4-8ce3-4df7-9c41-007b69045c40	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.