CVE-2019-14945

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-14945

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-14945.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2019-14945

Published

2019-08-12T16:15:15.353Z

Modified

2025-11-20T10:57:07.162685Z

Severity

5.4 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

The ultimate-member plugin before 2.0.54 for WordPress has XSS.

References

Affected packages

Git / github.com/ultimatemember/ultimatemember

Affected ranges

Type: GIT
Repo: https://github.com/ultimatemember/ultimatemember
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

bd6237a3f60a1f371f6850a93a9d611327c22b98

Affected versions

1.*

1.3.48

1.3.59

1.3.88

1.3.88.4

1.3.88.5

1.3.88.6

2.*

2.0

2.0.10

2.0.11

2.0.12

2.0.13

2.0.14

2.0.15

2.0.16

2.0.17

2.0.18

2.0.19

2.0.21

2.0.22

2.0.23

2.0.24

2.0.26

2.0.29

2.0.30

2.0.31

2.0.32

2.0.33

2.0.34

2.0.35

2.0.37

2.0.38

2.0.39

2.0.4

2.0.41

2.0.43

2.0.44

2.0.45

2.0.46

2.0.47

2.0.48

2.0.49

2.0.5

2.0.50

2.0.51

2.0.52

2.0.53

2.0.9

pre-v1.*

pre-v1.3.50

pre-v1.3.69.16

pre-v1.3.69.17

pre-v1.3.69.18

pre-v1.3.69.19

pre-v1.3.69.20

pre-v1.3.69.21

pre-v1.3.69.22

pre-v1.3.69.23

pre-v1.3.69.24

pre-v1.3.69.25

v1.*

v1.3.29

v1.3.30

v1.3.32

v1.3.35

v1.3.36

v1.3.37

v1.3.38

v1.3.39

v1.3.40

v1.3.41

v1.3.42

v1.3.43

v1.3.44

v1.3.45

v1.3.47

v1.3.49

v1.3.51

v1.3.52

v1.3.53

v1.3.54

v1.3.55

v1.3.56

v1.3.60

v1.3.61

v1.3.62

v1.3.63

v1.3.64

v1.3.65

v1.3.66

v1.3.67

v1.3.68

v1.3.69

v1.3.71

v1.3.72

v1.3.73

v1.3.74

v1.3.75

v1.3.76

v1.3.78

v1.3.79

v1.3.81

v1.3.82

v1.3.83

v1.3.84

v1.3.88.1

v1.3.88.2

v1.3.88.3

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-14945.json"