WP Customer Area

Vulnerabilities 12Slug customer-areaLatest version 8.3.5WordPress.org →

Minimum safe version

8.3.5

Update to 8.3.5 or later to address 10 fixable vulnerabilities

Latest available8.3.5 ⚠ 2 vulnerabilities have no fix
N/A
2026-05-01< 8.3.5

WP Customer Area <= 8.3.4 - Authenticated (Custom+) Path Traversal

WordfenceCVE
High 7.5 Unfixed
2025-11-06≤ 8.3.5

CVE-2025-60201

CVEWordfence
Medium 4.3 Unfixed
2025-06-20≤ 8.3.5

WordPress WP Customer Area plugin <= 8.3.4 - Broken Access Control vulnerability

CVEEUVDWordfence
N/A
2017-11-27< 7.4.3

WordPress WP Customer Area Plugin <= 7.4.2 - Reflected Cross Site Scripting vulnerability

Patchstack