Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 03 Jun 2026 12:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Armember
Armember armember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User Signup Wordpress Wordpress wordpress |
|
| Vendors & Products |
Armember
Armember armember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User Signup Wordpress Wordpress wordpress |
Wed, 03 Jun 2026 02:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | The ARMember Premium plugin for WordPress is vulnerable to SQL Injection via the 'sSortDir_0' parameter of the `get_private_content_data` AJAX action in all versions up to, and including, 7.3.1. This is due to insufficient sanitization of the user-supplied parameter which is concatenated directly into the ORDER BY clause of an SQL query without a whitelist check. This makes it possible for authenticated attackers, with Subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. Note: The vulnerability can only be exploited if the "User Private Content" addon is enabled, which is disabled by default.. | |
| Title | ARMember Premium <= 7.3.1 - Authenticated (Subscriber+) SQL Injection via 'sSortDir_0' Parameter | |
| Weaknesses | CWE-89 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: Wordfence
Published:
Updated: 2026-06-02T20:55:53.439Z
Reserved: 2026-03-28T13:02:46.318Z
Link: CVE-2026-5074
Updated: 2026-06-02T20:55:48.790Z
Status : Deferred
Published: 2026-06-02T20:16:40.600
Modified: 2026-06-02T20:56:20.057
Link: CVE-2026-5074
No data.
OpenCVE Enrichment
Updated: 2026-06-03T10:55:12Z