CVE-2025-28859

CVE-2025-28859 is a CSRF vulnerability in the WordPress Maintenance Notice plugin (≤ 1.0.5). Exploitation could allow unauthorized actions on behalf of an authenticated user. Redhat/NVD entries and Patchstack indicate the fix was released in version 1.0.6; upgrading to 1.0.6 or later is the recom...