VYPR

Content Control

by WordPress

Source repositories

CVEs (4)

  • CVE-2025-47501MedMay 7, 2025
    risk 0.42cvss 6.5epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Daniel Iser Content Control content-control allows DOM-Based XSS.This issue affects Content Control: from n/a through <= 2.6.1.

  • CVE-2022-4509MedJan 23, 2023
    risk 0.35cvss 5.4epss 0.00

    The Content Control WordPress plugin before 1.1.10 does not validate and escapes some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as a contributor to perform Stored Cross-Site Scripting attacks, which could be…

  • CVE-2024-11153MedMar 5, 2025
    risk 0.34cvss 5.3epss 0.00

    The Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.5.0 via the WordPress core search feature. This makes…

  • CVE-2024-0615MedMay 2, 2024
    risk 0.34cvss 5.3epss 0.00

    The Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.1.0 via the API. This makes it possible for…