Medium 4.3
2026-02-09< 2.11.9
CVE-2025-15147
WCFM Membership – WooCommerce Memberships for Multivendor Marketplace
Minimum safe version
2.11.9
Update to 2.11.9 or later to address 5 fixable vulnerabilities
Latest available2.11.11 ✓
Critical 9.8
2023-05-20< 2.11.0
CVE-2023-2276
High 8.8
2023-04-06< 2.10.1
WordPress WCFM Membership Plugin <= 2.9.10 is vulnerable to Cross Site Request Forgery (CSRF)
Medium 6.5
2023-04-06< 2.10.1
WordPress WCFM Membership Plugin <= 2.10.0 is vulnerable to Broken Access Control
Critical 9.8
2023-04-06< 2.10.1
WordPress WCFM Membership Plugin <= 2.10.0 is vulnerable to Privilege Escalation