SQL Injection in ARMember Premium Plugin for WordPress
CVE-2026-5074

6.5MEDIUM

Key Information:

Vendor: WordPress
Status: Armember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User Signup
Vendor: CVE Published:; 2 June 2026

What is CVE-2026-5074?

The ARMember Premium plugin for WordPress suffers from an SQL Injection vulnerability that can be exploited via the 'sSortDir_0' parameter in the get_private_content_data AJAX action. This issue arises from inadequate sanitization of user-supplied parameters, which are directly concatenated into the ORDER BY clause of SQL queries. Authenticated users with Subscriber-level access and higher, when the 'User Private Content' addon is enabled, can inject malicious SQL queries to extract sensitive database information. This puts user data at risk, emphasizing the need for immediate updates and secure coding practices.

Affected Version(s)

ARMember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup 0 <= 7.3.1

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://codecanyon.net/item/armember-complete-wordpress-m...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 2, 2026
Vulnerability Reserved
Mar 28, 2026

Credit

Phú

CVE-2026-5074 Data

JSON