The Anonymous Restricted Content plugin for WordPress is vulnerable to information disclosure in all versions up to, and including, 1.6.2. This is due to insufficient restrictions through the REST API on the posts/pages that protections are being place on. This makes it possible for unauthenticated attackers to access protected content.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published: 2024-02-03T05:38:32.691Z

Updated: 2024-08-01T18:18:18.947Z

Reserved: 2024-01-25T21:08:00.646Z

Link: CVE-2024-0909

cve-icon Vulnrichment

Updated: 2024-08-01T18:18:18.947Z

cve-icon NVD

Status : Modified

Published: 2024-02-03T06:15:48.057

Modified: 2024-11-21T08:47:41.320

Link: CVE-2024-0909

cve-icon Redhat

No data.