The Anonymous Restricted Content plugin for WordPress is vulnerable to information disclosure in all versions up to, and including, 1.6.2. This is due to insufficient restrictions through the REST API on the posts/pages that protections are being place on. This makes it possible for unauthenticated attackers to access protected content.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Wordfence
Published: 2024-02-03T05:38:32.691Z
Updated: 2024-06-27T21:03:45.441Z
Reserved: 2024-01-25T21:08:00.646Z
Link: CVE-2024-0909
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-02-03T06:15:48.057
Modified: 2024-02-08T20:07:51.410
Link: CVE-2024-0909
JSON object: View
Redhat Information
No data.
CWE