Medium severity5.3NVD Advisory· Published Apr 17, 2025· Updated Apr 15, 2026
CVE-2025-3453
CVE-2025-3453
Description
The Password Protected – Password Protect your WordPress Site, Pages, & WooCommerce Products – Restrict Content, Protect WooCommerce Category and more plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.7.7 via the 'password_protected_cookie' function. This makes it possible for unauthenticated attackers to extract sensitive data including all protected site content if the 'Use Transient' setting is enabled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=2.7.7
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.