VYPR

Minimal Coming Soon & Maintenance Mode

by WordPress

CVEs (4)

  • CVE-2020-6167HigJan 9, 2020
    risk 0.57cvss 8.8epss 0.01

    A flaw in the WordPress plugin, Minimal Coming Soon & Maintenance Mode through 2.10, allows a CSRF attack to enable maintenance mode, inject XSS, modify several important settings, or include remote files as a logo.

  • CVE-2020-6168HigJan 9, 2020
    risk 0.50cvss 7.6epss 0.02

    A flaw in the WordPress plugin, Minimal Coming Soon & Maintenance Mode through 2.10, allows authenticated users with basic access to enable and disable maintenance-mode settings (impacting the availability and confidentiality of a vulnerable site, along with the integrity of the…

  • CVE-2024-5087MedJun 8, 2024
    risk 0.41cvss 6.3epss 0.00

    The Minimal Coming Soon – Coming Soon Page plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the validate_ajax, deactivate_ajax, and save_ajax functions in all versions up to, and including, 2.38. This makes it…

  • CVE-2020-6166MedJan 9, 2020
    risk 0.35cvss 5.4epss 0.01

    A flaw in the WordPress plugin, Minimal Coming Soon & Maintenance Mode through 2.15, allows authenticated users with basic access to export settings and change maintenance-mode themes.