CVE-2025-9489 | WP-Members Membership Plugin up to 3.5.4.2 on WordPress Shortcode privilege escalation

A vulnerability categorized as critical has been discovered in WP-Members Membership Plugin up to 3.5.4.2 on WordPress. Affected by this vulnerability is an unknown functionality of the component Shortcode Handler. Such manipulation leads to privilege escalation.

This vulnerability is traded as CVE-2025-9489. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More