Lucene search
Wp Maintenance Mode & Coming Soon Security Vulnerabilities
cve
The WP Maintenance Mode & Coming Soon WordPress plugin before 2.4.5 is lacking CSRF when emptying the subscribed users list, which could allow attackers to make a logged in admin perform such action via a CSRF attack
6.5CVSS
6.2AI Score
0.001EPSS
2022-07-11 01:15 PM
52
5
cve
The LightStart – Maintenance Mode, Coming Soon and Landing Page Builder plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the insert_template function in all versions up to, and including, 2.6.8. This makes it possible for authenticated att...
4.3CVSS
4.6AI Score
0.0004EPSS
2024-01-11 09:15 AM
15