cleantalk
Vulnerabilities and Security Researches

Passster – Password Protect Pages and Content, CVE-2024-11282

CVE, Research URL

CVE-2024-11282

Home page URL

Security reports for Passster – Password Protect Pages and Content

Application

Passster – Password Protect Pages and Content

Published on
Jan 07, 2025
Research Description
The Passster – Password Protect Pages and Content plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.2.10 via the WordPress core search feature. This makes it possible for unauthenticated attackers to extract sensitive data from posts that have been restricted to higher-level roles such as administrator.
Affected versions
max 4.2.11.
Status
vulnerable
Previous vulnerability researches
Passster – Password Protect Pages and Content (CVE-2026-25036) , Feb 27, 2026
Passster – Password Protect Pages and Content (CVE-2025-14865) , Feb 27, 2026
Passster – Password Protect Pages and Content (bfdd54390f6c678c900a611cd5bef14a09d074cd) , Jun 07, 2024
Passster – Password Protect Pages and Content (CVE-2021-24881) , Jun 07, 2024
Passster – Password Protect Pages and Content (CVE-2024-2026) , Jun 07, 2024
New vulnerability
Serious Slider (CVE-2026-25399) , Feb 28, 2026
Omnipress (CVE-2026-25432) , Feb 28, 2026
MDirector Newsletter (CVE-2025-14852) , Feb 28, 2026
Alma – Pay in installments or later for WooCommerce (CVE-2026-24999) , Feb 28, 2026
Visual Website Collaboration, Feedback & Project Management – Atarim (CVE-2026-25019) , Feb 27, 2026