2018-05-14 13:00:00
jpcert
PUBLISHED
Ultimate Member plugin prior to version 2.0.4 for WordPress allows remote authenticated attackers to bypass access restriction to add a new form in the Forms page via unspecified vectors.