Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:32 a.m.10 views

CVE-2024-0682

The Page Restrict plugin for WordPress is vulnerable to information disclosure in all versions up to, and including, 2.5.5. This is due to the plugin not properly restricting access to posts via the REST API when a page has been made private. This makes it possible for unauthenticated attackers t...

5.3CVSS6.4AI score0.00496EPSS
Exploits0References1
NVD
NVD
added 2024/02/28 9:15 a.m.23 views

CVE-2024-0682

The Page Restrict plugin for WordPress is vulnerable to information disclosure in all versions up to, and including, 2.5.5. This is due to the plugin not properly restricting access to posts via the REST API when a page has been made private. This makes it possible for unauthenticated attackers t...

5.3CVSS5AI score0.00496EPSS
Exploits0References2
CVE
CVE
added 2024/02/28 8:33 a.m.168 views

CVE-2024-0682

CVE-2024-0682 affects the Page Restrict plugin for WordPress. It allows information disclosure by unauthenticated actors due to inadequate REST API access restrictions for private posts in all versions up to 2.5.5. Base CVSS 3.1 is 5.3 (Medium), Confidentiality impact: Low. No public remediation ...

5.3CVSS5.3AI score0.00496EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/02/28 12:0 a.m.10 views

WordPress Page Restrict Plugin <= 2.5.5 is vulnerable to Bypass Vulnerability

Software Page Restrict Type Plugin Vulnerable versions = 2.5.5 Fixed in N/A OWASP Top 10 A4: Insecure Design Classification Bypass Vulnerability CVE CVE-2024-0682 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID e5dc30bc662f Credits Francesco Carlucci Required privilege...

5.3CVSS6.5AI score0.00496EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder