Yith Maintenance Mode Security Vulnerabilities and Issues — Yith Maintenance Mode CVE List

Lucene search

YithemesYith Maintenance Mode

3 matches found

CVE•added 2019/09/26 1:15 a.m.•127 views

CVE-2015-9429

The yith-maintenance-mode plugin before 1.2.0 for WordPress has CSRF with resultant XSS via the wp-admin/themes.php?page=yith-maintenance-mode panel_page parameter.

6.5CVSS6.2AI score0.00186EPSS

CVE•added 2021/09/27 4:15 p.m.•39 views

CVE-2021-36841

Authenticated Stored Cross-Site Scripting (XSS) vulnerability in YITH Maintenance Mode (WordPress plugin) versions

6.9CVSS5.2AI score0.00355EPSS

CVE•added 2021/09/27 4:15 p.m.•30 views

CVE-2021-36845

Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities in YITH Maintenance Mode (WordPress plugin) versions <= 1.3.8, there are 46 vulnerable parameters that were missed by the vendor while patching the 1.3.7 version to 1.3.8. Vulnerable parameters: 1 - "Newsletter" tab, &yith_...

6.9CVSS5.2AI score0.01157EPSS