cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forcontent-control content-control

Direction: descending
May 09, 2025

Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More # CVE-2025-47501

CVE, Research URL

CVE-2025-47501

Home page URL

Security reports for Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More

Application

Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More

Date
May 07, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Code Atlantic Content Control allows DOM-Based XSS. This issue affects Content Control: from n/a through 2.6.1.
Affected versions
Min -, max -.
Status
vulnerable
Mar 06, 2025

Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More # CVE-2024-11153

CVE, Research URL

CVE-2024-11153

Home page URL

Security reports for Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More

Application

Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More

Date
Mar 05, 2025
Research Description
The Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.5.0 via the WordPress core search feature. This makes it possible for unauthenticated attackers to extract sensitive data from posts that have been restricted to higher-level roles such as logged-in users.
Affected versions
Min -, max -.
Status
vulnerable
Jun 06, 2024

Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More # CVE-2022-4509

CVE, Research URL

CVE-2022-4509

Home page URL

Security reports for Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More

Application

Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More

Date
Jan 23, 2023
Research Description
The Content Control WordPress plugin before 1.1.10 does not validate and escapes some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as a contributor to perform Stored Cross-Site Scripting attacks, which could be used against high privilege users such as admins.
Affected versions
Min -, max -.
Status
vulnerable

Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More # CVE-2024-0615

CVE, Research URL

CVE-2024-0615

Home page URL

Security reports for Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More

Application

Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More

Date
May 02, 2024
Research Description
The Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.1.0 via the API. This makes it possible for unauthenticated attackers to extract post titles, IDs, slugs, statuses and other information including post content. This includes published content only.
Affected versions
Min -, max -.
Status
vulnerable