Site Offline WP Plugin < 1.5.3 - Authorization Bypass

The plugin prevents users from accessing a website but does not do so if the URL contained certain keywords. Adding those keywords to the URL's query string would bypass the plugin's main feature. id: CVE-2022-1580 info: name: Site Offline WP Plugin 1.5.3 - Authorization Bypass author: s4e-io...

CVE-2023-49190

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Chandra Shekhar Sahu Site Offline Or Coming Soon Or Maintenance Mode allows Stored XSS.This issue affects Site Offline Or Coming Soon Or Maintenance Mode: from n/a through 1.5.6...

EUVD-2020-23429

Malware in sbrugna...

EUVD-2024-17142

Malicious code in bioql PyPI...

EUVD-2025-26030

Malicious code in bioql PyPI...

EUVD-2023-53195

Malicious code in bioql PyPI...

CVE-2025-48348

Incorrect Privilege Assignment vulnerability in chandrashekharsahu Site Offline site-offline allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Site Offline: from n/a through = 1.5.7...

CVE-2025-48348

Incorrect Privilege Assignment vulnerability in chandrashekharsahu Site Offline site-offline allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Site Offline: from n/a through = 1.5.7...

CVE-2025-48348

CVE-2025-48348 affects WordPress Site Offline plugin (versions up to 1.5.7). The issue is an Incorrect Privilege/ Broken Access Control assignment due to misconfigured access control levels, enabling exploitation of privilege checks as described in multiple sources. CVSS v3.1: Network attack vect...

CVE-2025-48348 WordPress Site Offline plugin <= 1.5.7 - Broken Access Control vulnerability

Incorrect Privilege Assignment vulnerability in chandrashekharsahu Site Offline site-offline allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Site Offline: from n/a through = 1.5.7...

WordPress plugin Site Offline 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

PT-2025-35017

Name of the Vulnerable Software and Affected Versions: chandrashekharsahu Site Offline versions n/a through 1.5.7 Description: An incorrect privilege assignment exists in Site Offline, allowing exploitation of incorrectly configured access control security levels. Recommendations: Update Site...

WordPress Site Offline plugin <= 1.5.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Que Thanh Tuan - Blue Rock in WordPress Plugin Site Offline versions = 1.5.7...

CVE-2020-35773

The site-offline plugin before 1.4.4 for WordPress lacks certain wpcreatenonce and wpverifynonce calls, aka CSRF...

CVE-2024-1385 WP-Stateless – Google Cloud Storage <= 3.4.0 - Missing Authorization to Limited Arbitrary Options Update

The WP-Stateless – Google Cloud Storage plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the dismissnotices function in all versions up to, and including, 3.4.0. This makes it possible for authenticated attackers, with subscriber-level access an...

CVE-2024-1385

The CVE refers to WP-Stateless (Google Cloud Storage) for WordPress, with a missing capability check in dismiss_notices() that affects all versions up to 3.4.0. The vulnerability allows authenticated users with subscriber-level access and above to update arbitrary option values to the current tim...

CVE-2023-49190

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Chandra Shekhar Sahu Site Offline Or Coming Soon Or Maintenance Mode allows Stored XSS.This issue affects Site Offline Or Coming Soon Or Maintenance Mode: from n/a through 1.5.6...

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Chandra Shekhar Sahu Site Offline Or Coming Soon Or Maintenance Mode allows Stored XSS.This issue affects Site Offline Or Coming Soon Or Maintenance Mode: from n/a through 1.5.6...

CVE-2023-49190 WordPress Site Offline Plugin <= 1.5.6 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Chandra Shekhar Sahu Site Offline Or Coming Soon Or Maintenance Mode allows Stored XSS.This issue affects Site Offline Or Coming Soon Or Maintenance Mode: from n/a through 1.5.6...

CVE-2023-49190

CVE-2023-49190 affects the WordPress plugin “Site Offline Or Coming Soon Or Maintenance Mode.” It is a Stored XSS vulnerability caused by improper input neutralization during web page generation. Affected versions are ≤ 1.5.6. Red Hat/NVD entries mirror the description and confirm the issue; Patc...