3 matches found
CVE-2024-0616
CVE-2024-0616 concerns the Passster – Password Protect Pages and Content WordPress plugin. Public sources confirm a vulnerability in all versions up to and including 4.2.6.2 where an API exposure allows unauthenticated attackers to retrieve sensitive information: titles, slugs, IDs, content, and ...
CVE-2024-2026
CVE-2024-2026 is for the Passster WordPress plugin (content-protector shortcode). The vulnerability is Stored Cross-Site Scripting in all versions up to and including 4.2.6.4, caused by insufficient input sanitization and output escaping on user-supplied attributes. Exploitation requires authenti...
CVE-2024-11282
CVE-2024-11282 affects the WordPress plugin Passster – Password Protect Pages and Content . According to the provided sources, it enables Sensitive Information Exposure via WordPress core search, allowing unauthenticated attackers to access restricted post data. The vulnerability applies to all v...