CVE-2024-1279 Information

Description

The Paid Memberships Pro WordPress plugin before 2.12.9 does not prevent user with at least the contributor role from leaking other users’ sensitive metadata.

Reference

https://wpscan.com/vulnerability/4c537264-0c23-428e-9a11-7a9e74fb6b69/