2025-08-12 02:24:46
Wordfence
PUBLISHED
The WP Private Content Plus plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.2 via the validate_restrictions function. This makes it possible for unauthenticated attackers to extract sensitive data including the content of resticted posts on archive and feed pages.