Locker Content WordPress Plugin Sensitive Information Exposure Vulnerability

Vulnerability

A vulnerability allowing sensitive information exposure has been identified in the Locker Content WordPress plugin, specifically in version 1.0.0. This issue arises through the 'lockerco_submit_post' AJAX endpoint, enabling unauthenticated attackers to retrieve content from posts protected by the plugin.

Impact

Exploitation of this vulnerability allows for unauthorized extraction of sensitive information from locked posts.

Added: Nov 25, 2025, 8:50 AM

Updated: Nov 25, 2025, 8:50 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

1.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

1.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Locker Content WordPress Plugin Sensitive Information Exposure Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating