Description
WordPress Plugin Passster Age Gate is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently perform a variety of the plugin's actions or even take over a website. WordPress Plugin Passster Age Gate version 4.0.6 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.0.7 or latest
References
https://github.com/Freemius/wordpress-sdk/commit/50a7ca3d921d59e1d2b39bb6ab3c6c7efde494b8
https://plugins.svn.wordpress.org/content-warning-v2/trunk/readme.txt
Related Vulnerabilities
Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2011-1134)
WordPress Plugin Videox7 UGC 'listid' Parameter Cross-Site Scripting (2.5.3.2)
WordPress Plugin Two Way CHAT-Send or receive messages to your user Multiple Vulnerabilities (3.1.4)
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-18679)