CVE-2018-20156
CVE-2018-20156 affects the WordPress WP Maintenance Mode plugin (before 2.0.7). A remote authenticated site administrator can execute arbitrary PHP code across a multisite network. Public sources confirm this plugin version before 2.0.7 is vulnerable; exploitation status is not detailed in the pr...