Ultimeter

Vulnerabilities 8Slug ultimeterLatest version 3.0.8WordPress.org →

Minimum safe version

3.0.7

Update to 3.0.7 or later to address 8 fixable vulnerabilities

Latest available3.0.8
Medium 6.3
2024-10-16< 2.7.6

Freemius SDK <= 2.4.2 - Missing Authorization Checks

CVE
N/A
2023-07-18< 2.8.3

WordPress Ultimeter Plugin < 2.8.3 is vulnerable to Cross Site Scripting (XSS)

PatchstackWPScanCVE
N/A
2019-02-25< 1.9.3

Freemius SDK <= 2.2.3 - Missing Authorization to Arbitrary Options Update

Wordfence
N/A
2022-03-04< 2.7.6

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Wordfence
N/A
< 1.9.3

Freemius Library &lt; 2.2.4 - Subscriber+ Arbitrary Option Update

WPScan
N/A
2022-02-28< 2.7.6

WordPress Ultimeter plugin < 2.7.6 - Sensitive Information Disclosure vulnerability

Patchstack
N/A
2022-02-28< 2.7.6

WordPress Ultimeter plugin < 2.7.6 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack