3 matches found
CVE-2024-1475
CVE-2024-1475 affects the WordPress plugin Coming Soon Maintenance Mode up to version 1.0.5. Root cause: Sensitive Information Exposure via the REST API that allows unauthenticated attackers to retrieve post/page content, bypassing plugin protection. Impact: unauthorized data disclosure of site c...
CVE-2024-1475 Coming Soon Maintenance Mode <= 1.0.5 - Information Exposure
The Coming Soon Maintenance Mode plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.5 via the REST API. This makes it possible for unauthenticated attackers to obtain post and page content thus bypassing the protection provided by the...
WordPress Coming Soon Maintenance Mode Plugin <= 1.0.5 is vulnerable to Sensitive Data Exposure
Software Coming Soon Maintenance Mode Type Plugin Vulnerable versions = 1.0.5 Fixed in 1.0.6 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-1475 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 6da3f77ac231 Credits Francesco...