Really Simple Security logo

Log out
Get PRO

PPWP – Password Protect Pages

The Password Protect WordPress (PPWP) plugin offers an all-in-one solution to secure a website with passwords, allowing users to protect WordPress categories, WooCommerce products, posts, or the entire website. However, the plugin does not protect images or uploaded files, which can still be accessed by anyone with the link. The passwords are stored in the post meta and the plugin sets a cookie to allow access to the protected pages or posts. The Lite version of the plugin allows users to protect WordPress pages and posts with unlimited passwords and by user roles.

This information is sourced from wpvulnerabilities.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Submit

Vulnerabilities

  • Access violation vulnerability in PPWP – Password Protect Pages 1.9.5

    Fixed

    The PPWP - Password Protect Pages plugin for WordPress is not secure in versions 1.9.5 and below. This is because the WordPress search feature can be used by unauthorized people to access private inf...

    Read More

  • Access violation vulnerability in PPWP – Password Protect Pages 1.8.9

    Fixed

    The Password Protect Pages plugin for WordPress, called PPWP, has a security flaw that could potentially expose sensitive information. This issue affects all versions up to 1.8.9 and can be exploited...

    Read More

  • Input validation vulnerability in PPWP – Password Protect Pages 1.8.5

    Fixed

    Read More