CVE-2018-5657

The CVE-2018-5657 entry applies to the WordPress plugin “responsive-coming-soon-page” v1.1.18. Root cause: cross-site scripting via the wp-admin/admin.php counter_title_icon parameter. Impact stated as XSS (execution of arbitrary script/HTML) in multiple sources. Exploitation details are not prov...

CVE-2018-5664

The CVE-2018-5664 entry documents a cross-site scripting (XSS) vulnerability in the WordPress plugin “responsive-coming-soon-page” version 1.1.18. The flaw is exploitable via the social_icon_1 parameter in wp-admin/admin.php, leading to arbitrary script execution within the context of the affecte...

CVE-2018-5663

CVE-2018-5663 affects the WordPress plugin responsive-coming-soon-page v1.1.18. An XSS flaw exists in the wp-admin/admin.php button_text_link parameter, enabling injected scripts/HTML. Connected sources (NVD/CNVD/WPVulndb) describe an authenticated stored XSS scenario and related CSRF risk; some ...

CVE-2018-5659

CVE-2018-5659 affects the WordPress plugin “responsive-coming-soon-page” v1.1.18, where an XSS vulnerability exists in the wp-admin/admin.php coming-soon_title parameter. The issue originates from improper handling of the coming-soon_title input, enabling script/HTML injection. NVD lists a low to...

CVE-2018-5662

CVE-2018-5662 affects the WordPress plugin “responsive-coming-soon-page” (version 1.1.18). The vulnerability is a Cross-Site Scripting (XSS) in the wp-admin/admin.php counter_title parameter, as described in multiple sources. Some connected documents also reference an authenticated stored XSS (an...

CVE-2018-5661

CVE-2018-5661 affects WordPress plugin responsive-coming-soon-page (v1.1.18). The vulnerability is an XSS via the logo_width parameter to wp-admin/admin.php, as described in NVD/CNVD entries. CVSS v3 base score 4.8 (Medium) with network attack vector, low attack complexity, privileges required: h...

CVE-2018-5666

CVE-2018-5666 affects the WordPress plugin responsive-coming-soon-page (version 1.1.18). The vulnerability is an XSS flaw in the admin path via the parameter bg_color in wp-admin/admin.php, which can inject arbitrary script/HTML and impact admin context. Public sources in the connected set corrob...

CVE-2018-5658

CVE-2018-5658 affects the WordPress Coming Soon plugin (responsive-coming-soon-page) up to version 1.1.18. The issue is a Cross-Site Request Forgery (CSRF) vulnerability via wp-admin/admin.php, as documented by multiple sources. Some connected entries also reference authenticated CSRF and related...

CVE-2018-5660

CVE-2018-5660 affects the WordPress plugin responsive-coming-soon-page (version 1.1.18). The vulnerability is an XSS in the admin context via the parameter coming-soon_sub_title in wp-admin/admin.php, as described by multiple sources (NVD/CNVD). Technical details across connected documents confir...

CVE-2018-5665

The CVE-2018-5665 vulnerability affects the WordPress plugin “responsive-coming-soon-page” (version 1.1.18). The issue is a cross-site scripting (XSS) flaw that can be triggered via the wp-admin/admin.php logo_height parameter, enabling injection of arbitrary script/HTML. NVD reports CVSS 3.0 bas...