2 matches found
EUVD-2026-43117
The UnderConstructionPage PRO plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 5.76. This is due to the plugin accepting arbitrary local file paths in the templatethumbnail parameter and copying their contents into a publicly accessible uploads file...
Underconstructionpage Cross Site Scripting
+-------------------------------------------------------------------------+ Exploit Title : Underconstructionpage alert1337 ucpoptionscontent=Thank you for being patient. We are doing some work on the site and will be back shortly...