Lucene search
+L

25 matches found

Patchstack
Patchstack
added 2021/09/15 12:0 a.m.21 views

WordPress YITH Maintenance Mode plugin <= 1.3.7 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Asif Nawaz Minhas Patchstack Red Team in WordPress YITH Maintenance Mode plugin versions = 1.3.7. Vulnerable parameter: &yithmaintenancenewslettersubmitlabel. Solution Update the WordPress YITH Maintenance Mode plugin to th...

6.9CVSS2.7AI score0.0061EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/05/14 12:15 p.m.6 views

CVE-2021-24191

Low privileged users can use the AJAX action 'cppluginsdobuttonjoblatercallback' in the WP Maintenance Mode & Site Under Construction WordPress plugin before 1.8.2, to install any plugin including a specific version from the WordPress repository, as well as activate arbitrary plugin from then blo...

8.8CVSS5.9AI score0.01311EPSS
Exploits2References1
CNVD
CNVD
added 2018/12/17 12:0 a.m.4 views

WordPress WP Maintenance Mode Plugin Information Disclosure Vulnerability

WordPress is the WordPress Software Foundation of a set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.WP Maintenance Mode Plugin is used in one of the site maintenance page settings plugin. An information disclosu...

4.3CVSS6.1AI score0.00978EPSS
Exploits0References1
CNVD
CNVD
added 2018/12/17 12:0 a.m.3 views

WordPress WP Maintenance Mode Plugin Arbitrary PHP Code Execution Vulnerability

WordPress is the WordPress Software Foundation of a set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.WP Maintenance Mode Plugin is used in one of the site maintenance page settings plugin. An arbitrary PHP code...

7.2CVSS7.8AI score0.01507EPSS
Exploits0References1
CNVD
CNVD
added 2018/12/17 12:0 a.m.4 views

WordPress WP Maintenance Mode Plugin Access Restriction Bypass Vulnerability

WordPress is the WordPress Software Foundation of a set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.WP Maintenance Mode Plugin is used in one of the site maintenance page settings plugin. WordPress WP Maintenanc...

4.3CVSS6.6AI score0.00779EPSS
Exploits0References1
Rows per page
Query Builder