cleantalk
Vulnerabilities and Security Researches

PPWP – Password Protect Pages, CVE-2025-5998

CVE, Research URL

CVE-2025-5998

Home page URL

Security reports for PPWP – Password Protect Pages

Application

PPWP – Password Protect Pages

Published on
Aug 14, 2025
Research Description
The PPWP – Password Protect Pages WordPress plugin before version 1.9.11 allows to put the site content behind a password authorization, however users with subscriber or greater roles can view content via the REST API.
Affected versions
Min -, max 1.9.11.
Status
vulnerable
Previous vulnerability researches
WordPress Job Board and Recruitment Plugin – JobWP (CVE-2025-49975) , Jun 30, 2025
WordPress Job Board and Recruitment Plugin – JobWP (CVE-2025-57895) , Aug 25, 2025
WordPress Job Board and Recruitment Plugin – JobWP (CVE-2025-2010) , Apr 20, 2025
WordPress Job Board and Recruitment Plugin – JobWP (CVE-2023-48288) , Jun 07, 2024
WordPress Job Board and Recruitment Plugin – JobWP (d3132dc76d8786c1409d32f3771c3624f40c9f5c) , Jun 07, 2024
New vulnerability
Advance Food Menu (CVE-2025-48323) , Aug 28, 2025
tli.tl auto Twitter poster (CVE-2025-48324) , Aug 28, 2025
Post Type Converter (CVE-2025-48303) , Aug 27, 2025
WP Shopify (CVE-2025-7808) , Aug 27, 2025
Image License and Protection (CVE-2025-8047) , Aug 27, 2025