{"id":"CVE-2020-5579","details":"SQL injection vulnerability in the Paid Memberships versions prior to 2.3.3 allows attacker with administrator rights to execute arbitrary SQL commands via unspecified vectors.","modified":"2026-03-15T22:38:25.018923Z","published":"2020-05-20T11:15:10.363Z","references":[{"type":"ADVISORY","url":"https://jvn.jp/en/jp/JVN20248858/index.html"},{"type":"ADVISORY","url":"https://www.paidmembershipspro.com/pmpro-update-2-3-3-security-release/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/strangerstudios/paid-memberships-pro","events":[{"introduced":"0"},{"fixed":"d37ccd830b24d6b8e6f4b5e59fe71a70d2f26e37"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"2.3.3"}]}}],"versions":["archive/v1.9.4","relase-1.8.5.2","release-1.7.10","release-1.7.10.1","release-1.7.10.2","release-1.7.11","release-1.7.12","release-1.7.13","release-1.7.14","release-1.7.14.1","release-1.7.15","release-1.7.15.1","release-1.7.15.2","release-1.8","release-1.8.1","release-1.8.10","release-1.8.10.1","release-1.8.10.2","release-1.8.10.3","release-1.8.10.4","release-1.8.11","release-1.8.11.1","release-1.8.11.2","release-1.8.12","release-1.8.12.1","release-1.8.13","release-1.8.13.1","release-1.8.13.2","release-1.8.13.3","release-1.8.13.4","release-1.8.13.5","release-1.8.13.6","release-1.8.2","release-1.8.2.2","release-1.8.3","release-1.8.4","release-1.8.4.2","release-1.8.4.3","release-1.8.4.4","release-1.8.4.5","release-1.8.5","release-1.8.5.1","release-1.8.5.3","release-1.8.5.4","release-1.8.5.5","release-1.8.5.6","release-1.8.6","release-1.8.6.3","release-1.8.6.4","release-1.8.6.5","release-1.8.6.6","release-1.8.6.7","release-1.8.6.8","release-1.8.7","release-1.8.7.3","release-1.8.8","release-1.8.8.1","release-1.8.8.3","release-1.8.9","release-1.8.9.1","release-1.8.9.2","release-1.9","release-1.9.1","release-1.9.2","release-1.9.2.1","release-1.9.3","release-1.9.4","release-1.9.4.1","release-1.9.4.2","release-1.9.4.3","release-1.9.4.4","release-1.9.5","release-1.9.5.1","release-1.9.5.4","release-v1.7.9","release-v1.7.9.1","release-v1.8.2.1","v1.7.5","v1.7.6","v1.7.7","v1.7.8","v1.7.8.1","v1.7.8.2","v1.9.5.2","v1.9.5.3","v1.9.5.5","v2.0","v2.0.1","v2.0.2","v2.0.3","v2.0.4","v2.0.5","v2.0.6","v2.0.7","v2.1","v2.1-Beta1","v2.1-Beta2","v2.1-RC1","v2.1.1","v2.1.2","v2.1.3","v2.1.4","v2.2","v2.2.2","v2.2.3","v2.2.4","v2.2.5","v2.2.6","v2.3-RC1","v2.3-RC2","v2.3.1","v2.3.2"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-5579.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"}]}