VYPR

Under Construction

by WordPress

CVEs (2)

  • CVE-2023-0832MedJun 9, 2023
    risk 0.28cvss 4.3epss 0.00

    The Under Construction plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.96. This is due to missing or incorrect nonce validation on the install_weglot function called via the admin_action_install_weglot action. This makes it…

  • CVE-2023-0831MedJun 9, 2023
    risk 0.28cvss 4.3epss 0.00

    The Under Construction plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.96. This is due to missing or incorrect nonce validation on the dismiss_notice function called via the admin_action_ucp_dismiss_notice action. This makes…