Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
MemberPress

MemberPress Vendor Cyber Rating & Cyber Score

memberpress.com

The MemberPress WordPress plugin lets you build astounding WordPress membership sites, set up subscriptions, build and sell online courses, paywall protect your content, and sell digital downloads... all with easy setup and no coding required. The MemberPress community is made up of thousands of professionals who've together generated over $1 billion in online business revenue.


MemberPress A.I CyberSecurity Scoring

MemberPress
Company Information
Website:https://memberpress.com/
Employees number:28
Number of followers:2,446
NAICS:5112
Industry Type:Software Development
Homepage:memberpress.com
MemberPress Risk Score (AI oriented)
Between 700 and 749
logo
MemberPressSoftware Development
Updated:
05/04/2026
749/1000
Moderate
Ba
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
MemberPress Global Score (TPRM)
xxxx
logo
MemberPressSoftware Development
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

MemberPress
MemberPressModerate
Current Score
749Ba (MODERATE)
01000
1 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
750Before Incident
JUNE 2026
750Before Incident
MAY 2026
750Before Incident
APRIL 2026
749Before Incident
MARCH 2026
749Before Incident
FEBRUARY 2026
749Before Incident
JANUARY 2026
749Before Incident
DECEMBER 2025
749Before Incident
NOVEMBER 2025
749Before Incident
OCTOBER 2025
749Before Incident
SEPTEMBER 2025
749Before Incident
AUGUST 2025
748Before Incident
JUNE 2025
750Before Incident
Vulnerability
16 Jun 2025MemberPress
Paid Membership Subscriptions (by Cozmoslabs)

Unauthenticated SQL Injection Vulnerability in WordPress Paid Membership Subscriptions Plugin (CVE-2025-49870)

748After Incident
CRITICAL-2
MEM810090225
A critical unauthenticated SQL injection vulnerability (CVE-2025-49870) was discovered in the WordPress Paid Membership Subscriptions plugin (versions ≤2.15.1), exposing over 10,000 websites managing memberships and recurring payments. The flaw stems from improper handling of PayPal IPN payment IDs, allowing attackers to inject malicious SQL queries without authentication.Exploitation could lead to unauthorized database access, enabling attackers to steal sensitive user data (e.g., payment details, membership records) or modify/delete critical records. While no active exploits are confirmed, the risk is severe due to the plugin’s widespread use in e-commerce, subscription services, and membership-based platforms.The vulnerability was patched in version 2.15.2, which enforces numeric validation for payment IDs, replaces vulnerable query concatenation with prepared statements, and strengthens input sanitization. Failure to update leaves sites vulnerable to data breaches, financial fraud, and reputational damage, particularly if customer payment data is compromised. Users are urged to immediately upgrade to mitigate risks.
INCIDENT DETAILS -
TYPE
VulnerabilitySQL Injection
IMPACT
Potential unauthorized access to sensitive database informationPotential modification of stored recordsWordPress sites using Paid Membership Subscriptions plugin (versions ≤ 2.15.1)Risk of database compromisePotential unauthorized data manipulationPotential reputational damage due to vulnerability exposurePotential risk if sensitive user data is exposedPotential risk if payment-related data is accessed or modified
DATA BREACH
Potential: Database records (membership, payment, or user data)Potentially high (membership, payment, or PII)Possible, if exploitedPossible, if stored in the database

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for MemberPress ?
?
What was MemberPress's A.I Rankiteo Cyber Score in June 2026 ?
?
What was MemberPress's A.I Rankiteo Cyber Score in May 2026 ?
?
What was MemberPress's A.I Rankiteo Cyber Score in April 2026 ?
?
What was MemberPress's A.I Rankiteo Cyber Score in March 2026 ?
?
What was MemberPress's A.I Rankiteo Cyber Score in February 2026 ?
?
What was MemberPress's A.I Rankiteo Cyber Score in January 2026 ?
?
What was MemberPress's A.I Rankiteo Cyber Score in December 2025 ?
?
What was MemberPress's A.I Rankiteo Cyber Score in November 2025 ?
?
What was MemberPress's A.I Rankiteo Cyber Score in October 2025 ?
?
What was MemberPress's A.I Rankiteo Cyber Score in September 2025 ?
?
What was MemberPress's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on MemberPress's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with MemberPress ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view MemberPress's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?