Lucene search
K

4 matches found

NVD
NVD
added 2024/05/15 12:15 a.m.20 views

CVE-2024-0437

The Password Protected – Ultimate Plugin to Password Protect Your WordPress Content with Ease plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.6 via the API. This makes it possible for authenticated attackers, with subscriber access or...

4.3CVSS4.9AI score0.00354EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/14 11:31 p.m.33 views

CVE-2024-0437 Password Protected – Ultimate Plugin to Password Protect Your WordPress Content with Ease <= 2.6.6 - Missing Authorization to Sensitive Information Exposure

The Password Protected – Ultimate Plugin to Password Protect Your WordPress Content with Ease plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.6 via the API. This makes it possible for authenticated attackers, with subscriber access or...

4.3CVSS5.2AI score0.00354EPSS
Exploits0References2
CVE
CVE
added 2024/05/14 11:31 p.m.91 views

CVE-2024-0437

CVE-2024-0437 affects Password Protected – Password Protect your WordPress Content with Ease (WordPress plugin). All versions up to 2.6.6 are vulnerable to Sensitive Information Exposure via the API, allowing authenticated attackers with subscriber access or higher to extract post titles and cont...

4.3CVSS6.5AI score0.00354EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/05/14 12:0 a.m.15 views

WordPress Password Protected Plugin <= 2.6.6 is vulnerable to Broken Access Control

Software Password Protected Type Plugin Vulnerable versions = 2.6.6 Fixed in 2.6.7 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-0437 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 9ba2b44f0023 Credits Francesco Carlucci Required...

4.3CVSS6.6AI score0.00354EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder