VYPR

Prevent Direct Access

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-3923MedApr 25, 2025
    risk 0.34cvss 5.3epss 0.00

    The Prevent Direct Access – Protect WordPress Files plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.8.8 via the 'generate_unique_string' due to insufficient randomness of the generated file name. This makes it…

  • CVE-2025-3861MedApr 25, 2025
    risk 0.28cvss 5.4epss 0.00

    The Prevent Direct Access – Protect WordPress Files plugin for WordPress is vulnerable to unauthorized access and modification of data| due to a misconfigured capability check on the 'pda_lite_custom_permission_check' function in versions 2.8.6 to 2.8.8.2. This makes it…