Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2024-1136
HistoryFeb 28, 2024 - 9:15 a.m.

Code injection

2024-02-2809:15:00
PRIOn knowledge base
www.prio-n.com
10
code injection
unauthorized access
data vulnerability
url check

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.2%

JSON

The Coming Soon Page & Maintenance Mode plugin for WordPress is vulnerable to unauthorized access of data due to an improperly implemented URL check in the wpsm_coming_soon_redirect function in all versions up to, and including, 2.2.1. This makes it possible for unauthenticated attackers to view a site with maintenance mode or coming-soon mode enabled to view the site’s content.

Related

cve 1
cvelist 1
nvd 1
wpvulndb 1
wordfence 1
cve
cve
CVE-2024-1136
2024-02-28 09:15:42
cvelist
cvelist
CVE-2024-1136
2024-02-28 08:33:13
nvd
nvd
CVE-2024-1136
2024-02-28 09:15:42
wpvulndb
wpvulndb
Coming Soon Page & Maintenance Mode < 2.2.2 - Maintenance Mode Bypass
2024-02-27 00:00:00
wordfence
wordfence
Wordfence Intelligence Weekly WordPress Vulnerability Report (February 26, 2024 to March 3, 2024)
2024-03-07 16:12:31

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.2%

JSON
Related for PRION:CVE-2024-1136
cve1cvelist1nvd1wpvulndb1wordfence1