CVE-2026-27368

Missing Authorization vulnerability in SeedProd Coming Soon Page, Under Construction & Maintenance Mode by SeedProd coming-soon allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Coming Soon Page, Under Construction & Maintenance Mode by SeedProd: from n/a...

EUVD-2025-17250

Malicious code in bioql PyPI...

CVE-2025-49322

CVE-2025-49322 affects the WordPress plugin 404 Page by SeedProd. It is a Stored XSS vulnerability in the page generation flow, exploitable only by authenticated attackers (Administrator+). Affected versions are up to 1.0.1; a fix is available in 1.0.2+ (upgrade recommended). CVSS v3.1 base score...

CVE-2025-3949 Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode <= 6.18.15 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure

The Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'seedprodlitegetrevisisons' function in all versions up to, and including, 6.18.15...

WordPress Website Builder by SeedProd plugin <= 6.18.15 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure vulnerability

Missing Authorization to Authenticated Subscriber+ Sensitive Information Exposure vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Coming Soon Page, Under Construction & Maintenance Mode by SeedProd versions = 6.18.15...

CVE-2025-24540

CVE-2025-24540 is a CSRF vulnerability in the WordPress plugin SeedProd Coming Soon Page, Under Construction & Maintenance Mode by SeedProd (versions n/a through 6.18.9). The flaw affects the SeedProd plugin’s CSRF protection, enabling cross-site forgery in affected installs. The reported CVSS-li...