CVE-2023-6257 Information

Description

The Inline Related Posts WordPress plugin before 3.6.0 does not ensure that post content displayed via an AJAX action are accessible to the user allowing any authenticated user such as subscriber to retrieve the content of password protected posts

Reference

https://wpscan.com/vulnerability/19a86448-8d7c-4f02-9290-d9f93810e6e1/