CYBERHAWK / CVE / CVE-2026-5073

CVE-2026-5073

ARMember Premium WordPress Plugin

HIGH CVSS 7.5 vibe

The flaw

SQL injection via order parameter of arm_directory_paging_action AJAX action due to insufficient escaping.

What to do

Update ARMember Premium plugin to version later than 7.3.1

▸ Scan my repo for CVE-2026-5073

References

NVD CISA KEV OSV GitHub Advisory MITRE News search
First seen 2026-06-05 · Tracked by PickBits CyberHawk · Weekly CVE digest
← All CVEs RSS Scheduled audits