Description
WordPress Plugin WP Private Content Plus is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently modify plugin options. WordPress Plugin WP Private Content Plus version 1.31 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.1 or latest
References
Related Vulnerabilities
MySQL CVE-2019-2636 Vulnerability (CVE-2019-2636)
Moodle Improper Privilege Management Vulnerability (CVE-2023-5549)
Resin Application Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2969)
WordPress Plugin Question Answer Multiple Cross-Site Scripting Vulnerabilities (1.2.30)