Password Protected — Lock Entire Site, Pages, Posts, Categories, and Partial Content

Vulnerabilities 8Slug password-protectedLatest version 2.8.0WordPress.org →

Minimum safe version

2.7.12

Update to 2.7.12 or later to address 8 fixable vulnerabilities

Latest available2.8.0 ✓

Low 3.7

2025-10-25< 2.7.12

CVE-2025-11244

Medium 5.3

2025-04-17< 2.7.8

WordPress Password Protected Plugin <= 2.7.7 is vulnerable to Sensitive Data Exposure

Medium 4.3

2024-05-14< 2.6.7

CVE-2024-0437

Medium 4.8

2024-02-20< 2.6.7

CVE-2024-0656

N/A

< 1.5

Password Protected 1.4 - Login Process redirect_to Parameter Arbitrary Site Redirect

N/A

2023-07-18< 2.6.3.2

WordPress Password Protected Plugin <= 2.6.3.1 is vulnerable to Cross Site Scripting (XSS)

Medium 5.9

2023-06-23< 2.6.3

CVE-2023-32580

N/A

2015-11-27< 1.5

WordPress Password Protected Plugin <= 1.4 - Arbitrary Site Redirect