Security Advisory
CVE-2023-23488
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
The Paid Memberships Pro WordPress Plugin, version < 2.9.8, is affected by an unauthenticated SQL injection vulnerability in the code parameter of the /pmpro/v1/order REST route.