Code Injection Vulnerability in s2Member Pro
CVE-2024-51815
9CRITICAL
What is CVE-2024-51815?
The vulnerability in WP Sharks' s2Member Pro arises from improper control over the generation of code, allowing potential exploitation through code injection. This flaw affects versions from n/a through 241114, enabling an attacker to inject malicious code into the application, which could be executed on the server hosting the affected plugin. Such an exploit may lead to unauthorized access or manipulation of data, posing significant threats to system integrity and user security.
Affected Version(s)
s2Member Pro <= 241114