Paid Member Subscriptions
Cozmoslabs
Developer
2.16.8
Latest version
10,000
Installations
Nov 10, 2025
Last updated
Vulnerability history
0 present
13 fixed
6 Mitigation rules
- Missing Authorization to Unauthenticated Arbitrary Member Subscription Auto Renewal vulnerability<= 2.16.4Nov 5, 2025
- Broken Access Control Vulnerability<= 2.15.9Sep 3, 2025
- Local File Inclusion Vulnerability<= 2.15.4Jul 29, 2025
- SQL Injection Vulnerability<= 2.15.1Jul 3, 2025
- Cross Site Scripting (XSS) Vulnerability<= 2.14.3Mar 28, 2025
- Authentication Bypass via pms_payment_id vulnerability<= 2.13.7Jan 13, 2025
- Unauthenticated Content Restriction Bypass to Sensitive Information Exposure vulnerability<= 2.13.4Dec 18, 2024
- Unauthenticated Arbitrary Shortcode Execution vulnerability<= 2.13.0Nov 26, 2024
- Reflected Cross-Site Scripting vulnerability<= 2.12.8Oct 2, 2024
- Cross Site Request Forgery (CSRF) vulnerability<= 2.11.0Apr 22, 2024
- Missing Authorization via creating_pricing_table_page vulnerability<= 2.11.1Feb 14, 2024
- Cross Site Request Forgery (CSRF) vulnerability<= 2.10.4Dec 27, 2023
- Reflected Cross-Site Scripting (XSS) vulnerability<= 2.4.1Jul 26, 2021