EUVD-2024-34291

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

WordPress plugin vulnerable to data exposure allowing attackers to extract restricted post information

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-11297	20 Dec 202407:05	–	circl
CVE	CVE-2024-11297	20 Dec 202406:59	–	cve
Cvelist	CVE-2024-11297 Page Restriction WordPress (WP) – Protect WP Pages/Post <= 1.3.6 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure	20 Dec 202406:59	–	cvelist
NVD	CVE-2024-11297	20 Dec 202407:15	–	nvd
Patchstack	WordPress Page Restriction WordPress (WP) plugin <= 1.3.6 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure vulnerability	19 Dec 202421:35	–	patchstack
Positive Technologies	PT-2024-16892 · WordPress · Page Restriction Wordpress	20 Dec 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-11297	23 May 202507:51	–	redhatcve
Vulnrichment	CVE-2024-11297 Page Restriction WordPress (WP) – Protect WP Pages/Post <= 1.3.6 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure	20 Dec 202406:59	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (December 16, 2024 to January 5, 2025)	9 Jan 202514:35	–	wordfence

[
  {
    "enisaIdVendor": [
      {
        "id": "690361c5-cd11-32f5-bcd6-f003b9f65d54",
        "vendor": {
          "name": "cyberlord92"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "5ca17d24-33ae-3273-8ee4-08f2f9e6ada7",
        "product": {
          "name": "Page Restriction WordPress (WP) – Protect WP Pages/Post"
        },
        "product_version": "* ≤1.3.6"
      }
    ]
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/6d12ab8c-d5d0-4e02-986e-e894fae073e5
wordpress	www.wordpress.org/plugins/page-and-post-restriction/

03 Oct 2025 20:07Current

8.7High risk

Vulners AI Score8.7

CVSS 3.15.3 - 7.5

EPSS0.01094

SSVC