CVE-2025-5920 Information

Description

The Sharable Password Protected Posts before version 1.1.1 allows access to password protected posts by providing a secret key in a GET parameter. However the key is exposed by the REST API.

Reference

https://wpscan.com/vulnerability/dddd6074-1e1f-441f-86f7-316c30262c70/

Related CNNVD

CNNVD-202507-336 (Published: 2025-07-04)