Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-58998
CVE-2025-58998
Deserialization of Untrusted Data vulnerability in Cristián Lávaque s2Member s2member allows Object Injection.This issue affects s2Member: from n/a through <= 250701.
Published Nov 7, 2025
https://vdp.patchstack.com/database/Wordpress/Plugin/s2member/vulnerability/wordpress-s2member-plugin-250701-php-object-injection-vulnerability
CVSS Score
Critical
9.8
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
composer
wp-pay-extensions/s2member
1.0.0
composer
wp-pay-extensions/s2member
1.1.0
composer
wp-pay-extensions/s2member
1.1.1
composer
wp-pay-extensions/s2member
1.2.0
composer
wp-pay-extensions/s2member
1.2.1
composer
wp-pay-extensions/s2member
1.2.2
composer
wp-pay-extensions/s2member
1.2.3
composer
wp-pay-extensions/s2member
1.2.4
composer
wp-pay-extensions/s2member
1.2.5
composer
wp-pay-extensions/s2member
1.2.6
composer
wp-pay-extensions/s2member
1.2.7
composer
wp-pay-extensions/s2member
2.0.0
composer
wp-pay-extensions/s2member
2.0.1
composer
wp-pay-extensions/s2member
2.0.2
composer
wp-pay-extensions/s2member
2.0.3
composer
wp-pay-extensions/s2member
2.0.4
composer
wp-pay-extensions/s2member
2.0.5
composer
wp-pay-extensions/s2member
2.1.0
composer
wp-pay-extensions/s2member
2.1.1
composer
wp-pay-extensions/s2member
2.1.2
composer
wp-pay-extensions/s2member
2.1.3
composer
wp-pay-extensions/s2member
2.2.0
composer
wp-pay-extensions/s2member
2.2.1
composer
wp-pay-extensions/s2member
2.2.2
composer
wp-pay-extensions/s2member
3.0.0
1-25 of 25
CVE-2025-58998 | Components Impacted | Sonatype Guide | Sonatype Guide
