2 matches found
CVE-2024-11106 Simple Restrict <= 1.2.7 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure
The Simple Restrict plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.7 via the WordPress core search feature. This makes it possible for unauthenticated attackers to extract sensitive data from posts that have been restricted to...
CVE-2024-11106
CVE-2024-11106 affects the Simple Restrict WordPress plugin, exposing sensitive data from restricted posts unauthenticated via WordPress core search in all versions up to 1.2.7. Red Hat and Wordfence entries confirm the vulnerability and its impact; remediation is to upgrade to 1.2.7+ (patched).