The plugin called Sharable Password Protected Posts for WordPress has a security weakness that can reveal sensitive information. This applies to all versions, including 1.1.0. The problem is that the password used for these posts can be accessed through the posts API, which means that anyone who is not logged in can retrieve this information.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
