Vulnerabilities and security researches forcontent-no-cache content-no-cache

Jul 02, 2025

CVE, Research URL: CVE-2025-28993
Home page URL: Security reports for Content No Cache: prevent specific content from being cached
Application: Content No Cache: prevent specific content from being cached
Date: Jun 27, 2025
Research Description: Improper Control of Generation of Code ('Code Injection') vulnerability in Jose Content No Cache allows Code Injection. This issue affects Content No Cache: from n/a through 0.1.3.
Affected versions: Min -, max -.
Status: vulnerable

Dec 25, 2024

CVE, Research URL: CVE-2024-12103
Home page URL: Security reports for Content No Cache: prevent specific content from being cached
Application: Content No Cache: prevent specific content from being cached
Date: Dec 24, 2024
Research Description: The Content No Cache: prevent specific content from being cached plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 0.1.2 via the eos_dyn_get_content action due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated attackers to extract data from password protected, private, or draft posts that they should not have access to.
Affected versions: Min -, max -.
Status: vulnerable