cleantalk
Vulnerabilities and Security Researches

Wp Edit Password Protected – Create Member/User Only Page & Design Password Protected Form, 1e0884ac1bf0d8c5dc23bd874438b262b36ec45f

CVE, Research URL

1e0884ac1bf0d8c5dc23bd874438b262b36ec45f

Home page URL

Security reports for Wp Edit Password Protected – Create Member/User Only Page & Design Password Protected Form

Application

Wp Edit Password Protected – Create Member/User Only Page & Design Password Protected Form

Published on
Mar 21, 2023
Research Description
Wp Edit Password Protected &#8211; Create Member/User Only Page &amp; Design Password Protected Form [wp-edit-password-protected] < 1.2.4 WordPress Wp Edit Password Protected – Create Member/User Only Page & Design Password Protected Form Plugin <= 1.2.3 is vulnerable to Cross Site Request Forgery (CSRF) Update the WordPress Wp Edit Password Protected – Create Member/User Only Page & Design Password Protected Form plugin to the latest available version (at least 1.2.4). Lana Codes discovered and reported this Cross Site Request Forgery (CSRF) vulnerability in WordPress Wp Edit Password Protected – Create Member/User Only Page & Design Password Protected Form Plugin. This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication. This vulnerability has been fixed in version 1.2.4.
Affected versions
Min -, max 1.2.4.
Status
vulnerable
Previous vulnerability researches
Wp Edit Password Protected &#8211; Create Member/User Only Page &amp; Design Password Protected Form (1e0884ac1bf0d8c5dc23bd874438b262b36ec45f) , Jun 06, 2024
New vulnerability
WP Simple Booking Calendar (CVE-2025-39541) , Apr 20, 2025
WordPress Job Board and Recruitment Plugin &#8211; JobWP (CVE-2025-2010) , Apr 20, 2025
WP Logger (CVE-2025-39456) , Apr 20, 2025
visualslider Sldier (CVE-2025-23448) , Apr 20, 2025
RSS Manager (CVE-2025-39418) , Apr 20, 2025