CVE-2024-12919: CWE-287 Improper Authentication in cozmoslabs Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction
The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 2.13.7. This is due to the pms_pb_payment_redirect_link function using the user-controlled value supplied via the 'pms_payment_id' parameter to authenticate users without any further identity validation. This makes it possible for unauthenticated attackers with knowledge of a valid payment ID to log in as any user who has made a purchase on the targeted site.
AI Analysis
Technical Summary
The Paid Membership Subscriptions WordPress plugin up to version 2.13.7 contains an authentication bypass vulnerability (CWE-287) due to improper validation of the 'pms_payment_id' parameter in the pms_pb_payment_redirect_link function. This parameter, controlled by the user, is used to authenticate users without further checks, enabling attackers with knowledge of a valid payment ID to impersonate any purchaser on the site. The vulnerability is critical with a CVSS 3.1 score of 9.8, reflecting network attack vector, low attack complexity, no privileges or user interaction required, and full impact on confidentiality, integrity, and availability. No patch or vendor advisory is currently referenced, and no exploits are known in the wild.
Potential Impact
Successful exploitation allows unauthenticated attackers to bypass authentication and log in as any user who has made a purchase, potentially exposing sensitive user data and enabling unauthorized actions with the privileges of the impersonated user. The vulnerability affects confidentiality, integrity, and availability of the affected WordPress sites using this plugin.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, restrict knowledge of valid payment IDs and monitor for suspicious login activity related to payment ID usage. Avoid exposing payment IDs in URLs or user-controllable parameters. Follow vendor updates closely for an official patch or mitigation instructions.
CVE-2024-12919: CWE-287 Improper Authentication in cozmoslabs Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction
Description
The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 2.13.7. This is due to the pms_pb_payment_redirect_link function using the user-controlled value supplied via the 'pms_payment_id' parameter to authenticate users without any further identity validation. This makes it possible for unauthenticated attackers with knowledge of a valid payment ID to log in as any user who has made a purchase on the targeted site.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The Paid Membership Subscriptions WordPress plugin up to version 2.13.7 contains an authentication bypass vulnerability (CWE-287) due to improper validation of the 'pms_payment_id' parameter in the pms_pb_payment_redirect_link function. This parameter, controlled by the user, is used to authenticate users without further checks, enabling attackers with knowledge of a valid payment ID to impersonate any purchaser on the site. The vulnerability is critical with a CVSS 3.1 score of 9.8, reflecting network attack vector, low attack complexity, no privileges or user interaction required, and full impact on confidentiality, integrity, and availability. No patch or vendor advisory is currently referenced, and no exploits are known in the wild.
Potential Impact
Successful exploitation allows unauthenticated attackers to bypass authentication and log in as any user who has made a purchase, potentially exposing sensitive user data and enabling unauthorized actions with the privileges of the impersonated user. The vulnerability affects confidentiality, integrity, and availability of the affected WordPress sites using this plugin.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, restrict knowledge of valid payment IDs and monitor for suspicious login activity related to payment ID usage. Avoid exposing payment IDs in URLs or user-controllable parameters. Follow vendor updates closely for an official patch or mitigation instructions.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- Wordfence
- Date Reserved
- 2024-12-24T17:14:52.449Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 699f6e4bb7ef31ef0b59c71a
Added to database: 2/25/2026, 9:48:59 PM
Last enriched: 4/9/2026, 6:29:55 AM
Last updated: 4/12/2026, 5:10:33 PM
Views: 23
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.