Vulnerability Alert - Plugin WordPress WP Private Content Plus
The WordPress WP Private Content Plus plugin, which has 9,000+ active installations, was prone to an unauthenticated options change vulnerability in version 1.31 and below.
WP Private Content Plus is a plugin used to protect important site content from specific user roles or group of selected users. It was prone to an unauthenticated options change vulnerability that could lead to website redirection, stored XSS (front-end and back-end), information disclosure and denial of service.
Update Plugin WordPress WP Private Content Plus to version greater than 1.31
 - https://blog.nintechnet.com/unauthenticated-options-change-vulnerability-in-wordpress-wp-private-content-plus-plugin/
 - https://wpvulndb.com/vulnerabilities/9817
 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15816