SQL Injection Vulnerability in Ultimate Member Plugin for WordPress
CVE-2025-1702

7.5HIGH

Key Information:

Vendor: WordPress
Status: Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin
Vendor: CVE Published:; 5 March 2025

Summary

The Ultimate Member plugin for WordPress contains a security vulnerability that allows unauthenticated attackers to exploit a time-based SQL injection via the 'search' parameter. This flaw arises from inadequate escaping of user-supplied inputs and insufficient preparation in existing SQL queries. As a result, attackers may insert additional SQL queries into the intended query, potentially gaining unauthorized access to sensitive database information. This vulnerability affects all versions up to and including 2.10.0, making it crucial for users to update to secure versions to mitigate risks.

Affected Version(s)

Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin * <= 2.10.0

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://wordpress.org/plugins/ultimate-member/#developers

https://plugins.trac.wordpress.org/browser/ultimate-membe...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 5, 2025
Vulnerability Reserved
Feb 25, 2025

Credit

Michael Mazzolini