CVE-2025-10720

MEDIUM

WP Private Content Plus <3.6.2 - Auth Bypass

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-10720. PoCs published by lorenzocamilli.

AI-analyzed exploit summary This repository contains a functional CSRF PoC for CVE-2025-10720, targeting the Contest Gallery WordPress plugin. The exploit demonstrates how an attacker can trick an authenticated user into deleting gallery items via a crafted HTML form submission.

Description

The WP Private Content Plus through 3.6.2 provides a global content protection feature that requires a password. However, the access control check is based only on the presence of an unprotected client-side cookie. As a result, an unauthenticated attacker can completely bypass the password protection by manually setting the cookie value in their browser.

Exploits (2)

github WORKING POC

by lorenzocamilli · htmlpoc

https://github.com/lorenzocamilli/CVE-2025-62950-PoC

View Code ZIP pw:eip

This repository contains a functional CSRF PoC for CVE-2025-10720, targeting the Contest Gallery WordPress plugin. The exploit demonstrates how an attacker can trick an authenticated user into deleting gallery items via a crafted HTML form submission.

Classification

Working Poc 95%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: Contest Gallery – Upload, Vote & Sell with PayPal and Stripe v. 26.1.2

Auth required

Prerequisites: Authenticated user session · Target plugin installed and configured

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 19, 2026 Full analysis →

nomisec WRITEUP

by lorenzocamilli · poc

https://github.com/lorenzocamilli/CVE-2025-10720-PoC

View Code ZIP pw:eip

This repository contains a writeup describing an authentication bypass vulnerability in the WordPress plugin WP Private Content Plus v3.6.2. The issue allows unauthenticated users to bypass password-protected content due to improper reliance on client-side cookies.

Classification

Writeup 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: WP Private Content Plus v3.6.2

No auth needed

Prerequisites: Access to the target WordPress site with the vulnerable plugin installed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory exploit vdb-entry technical-description

https://wpscan.com/vulnerability/5295e8da-7aba-4322-981b-80d692b3bc35/

Scores

CVSS v3 6.5

EPSS 0.0027

EPSS Percentile 18.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

Status published

Products (1)

Unknown/WP Private Content Plus < 3.6.2

Published Oct 13, 2025

Tracked Since Feb 18, 2026