CVE-2025-58000
WordPress Memberful plugin <= 1.75.0 - Broken Access Control vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Missing Authorization vulnerability in memberful Memberful - Membership Plugin memberful-wp allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Memberful - Membership Plugin: from n/a through <= 1.75.0.
| CWE | CWE-862 |
| Vendor | memberful |
| Product | memberful - membership plugin |
| Published | Sep 22, 2025 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for memberful memberful - membership plugin
Be the first to know when new unknown vulnerabilities affecting memberful memberful - membership plugin are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
memberful / Memberful - Membership Plugin
0 โค 1.75.0
References
Credits
Nabil Irawan | Patchstack Bug Bounty Program