WordPress WP Private Content Plus plugin <= 3.6.2 - Password Protection Bypass vulnerability

Password Protection Bypass vulnerability discovered by Lorenzo Camilli in WordPress Plugin WP Private Content Plus versions = 3.6.2...

EUVD-2025-34063

The WP Private Content Plus through 3.6.2 provides a global content protection feature that requires a password. However, the access control check is based only on the presence of an unprotected client-side cookie. As a result, an unauthenticated attacker can completely bypass the password...

CVE-2025-10720

CVE-2025-10720 stems from WP Private Content Plus (through version 3.6.2) relying on a client-side cookie for access control, allowing unauthenticated attackers to bypass password protection by manually setting the cookie. Multiple sources (NVD/NVD-enriched, Red Hat, CNNVD, EUVD, CIRCL sightings,...

CVE-2025-10720 WP Private Content Plus <= 3.6.2 - Password Protection Bypass

The WP Private Content Plus through 3.6.2 provides a global content protection feature that requires a password. However, the access control check is based only on the presence of an unprotected client-side cookie. As a result, an unauthenticated attacker can completely bypass the password...

WordPress plugin WP Private Content Plus 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

EUVD-2025-24197

Malicious code in bioql PyPI...

EUVD-2021-34212

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-4390

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The WP Private Content Plus plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.2 via the...

WordPress WP Private Content Plus plugin information disclosure vulnerability

WordPress WP Private Content Plus plugin is a WordPress plugin that is mainly used for permission control of website content and supports access restrictions on posts, pages, custom content types, navigation menus, plugins and attachments. WordPress WP Private Content Plus plugin suffers from an...

CVE-2025-4390

The WP Private Content Plus plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.2 via the 'validaterestrictions' function. This makes it possible for unauthenticated attackers to extract sensitive data including the content of resticted...

UBUNTU-CVE-2025-4390

The WP Private Content Plus plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.2 via the 'validaterestrictions' function. This makes it possible for unauthenticated attackers to extract sensitive data including the content of resticted...

CVE-2025-4390 WP Private Content Plus <= 3.6.2 - Unauthenticated Sensitive Information Exposure

The WP Private Content Plus plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.2 via the 'validaterestrictions' function. This makes it possible for unauthenticated attackers to extract sensitive data including the content of resticted...

CVE-2025-4390

CVE-2025-4390 affects the WordPress plugin WP Private Content Plus (versions up to 3.6.2). The vulnerability is a Sensitive Information Exposure via the validate_restrictions function, allowing unauthenticated attackers to extract sensitive data, including restricted posts on archive and feed pag...

CVE-2025-4390 WP Private Content Plus <= 3.6.2 - Unauthenticated Sensitive Information Exposure

The WP Private Content Plus plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.2 via the 'validaterestrictions' function. This makes it possible for unauthenticated attackers to extract sensitive data including the content of resticted...

WordPress plugin WP Private Content Plus 信息泄露漏洞

WordPress WP Private Content Plus plugin is a WordPress plugin that is mainly used for permission control of website content and supports access restrictions on posts, pages, custom content types, navigation menus, plugins and attachments. WordPress WP Private Content Plus plugin suffers from an...

WordPress WP Private Content Plus plugin <= 3.6.2 - Unauthenticated Sensitive Information Exposure vulnerability

Unauthenticated Sensitive Information Exposure vulnerability discovered by Luca Epifanio Bitcube Security in WordPress Plugin WP Private Content Plus versions = 3.6.2...

CVE-2019-15816

The wp-private-content-plus plugin before 2.0 for WordPress has no protection against option changes via savesettingspage and other save functions...

CVE-2024-11292

CVE-2024-11292 affects the WordPress plugin WP Private Content Plus (

CVE-2024-11292 WP Private Content Plus <= 3.6.1 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure

The WP Private Content Plus plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.1 via the WordPress core search feature. This makes it possible for unauthenticated attackers to extract sensitive data from posts that have been restricted t...

CVE-2024-11292 WP Private Content Plus <= 3.6.1 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure

The WP Private Content Plus plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.1 via the WordPress core search feature. This makes it possible for unauthenticated attackers to extract sensitive data from posts that have been restricted t...