WordPress IgniteUp – Coming Soon and Maintenance Mode plugin <= 3.4.1 - Stored Cross-Site Scripting (XSS) vulnerability

2022-04-1300:00:00

Kaushalendra Dubey

patchstack.com

0.001 Low

EPSS

Percentile

25.0%

JSON

Stored Cross-Site Scripting (XSS) vulnerability discovered by Kaushalendra Dubey in WordPress IgniteUp – Coming Soon and Maintenance Mode plugin (versions <= 3.4.1).

Solution

Deactivate and delete. This plugin has been closed as of March 9, 2022 and is not available for download. This closure is temporary, pending a full review.