Unrated severityNVD Advisory· Published Jan 23, 2023· Updated Apr 2, 2025
Passster < 3.5.5.9 - Protection Bypass & Arbitrary Post Access
CVE-2021-24881
Description
The Passster WordPress plugin before 3.5.5.9 does not properly check for password, as well as that the post to be viewed is public, allowing unauthenticated users to bypass the protection offered by the plugin, and access arbitrary posts (such as private) content, by sending a specifically crafted request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Passsterdescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/0967303d-ea49-4993-84eb-a7ec97240071mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.