CVE Alert & Security Feed

Stats Digest Feeds

← Back to all CVEs

CVE-2026-39514

HIGH NVD

CVSS Score 7.1

Severity HIGH

Published Jun 15, 2026

Vendor unknown

Description

Unauthenticated Cross Site Scripting (XSS) in Paid Member Subscriptions <= 2.17.3 versions.

References

https://patchstack.com/database/wordpress/plugin/paid-member-subscriptions/vulnerability/wordpress-paid-member-subscriptions-plugin-2-17-3-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve