VYPR

site-offline

by WordPress

CVEs (2)

  • CVE-2020-35773HigDec 29, 2020
    risk 0.57cvss 8.8epss 0.01

    The site-offline plugin before 1.4.4 for WordPress lacks certain wp_create_nonce and wp_verify_nonce calls, aka CSRF.

  • CVE-2025-48348MedAug 28, 2025
    risk 0.28cvss 4.3epss 0.00

    Incorrect Privilege Assignment vulnerability in chandrashekharsahu Site Offline site-offline allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Site Offline: from n/a through <= 1.5.7.