VYPR

Coming Soon \& Maintenance Mode Page

by Wpconcern

Source repositories

CVEs (4)

  • CVE-2020-36707HigJun 7, 2023
    risk 0.57cvss 8.8epss 0.00

    The Coming Soon & Maintenance Mode Page plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.57. This is due to confusing logic functions missing or having incorrect nonce validation. This makes it possible for unauthenticated…

  • CVE-2019-25139MedJun 7, 2023
    risk 0.42cvss 6.5epss 0.01

    The Coming Soon Page & Maintenance Mode plugin for WordPress is vulnerable to unauthenticated settings reset in versions up to, and including 1.8.1 due to missing capability checks in the ~/functions/data-reset-post.php file which makes it possible for unauthenticated attackers…

  • CVE-2019-25140HigJun 7, 2023
    risk 0.40cvss 7.2epss 0.01

    The WordPress Coming Soon Page & Maintenance Mode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the logo_width, logo_height, rcsp_logo_url, home_sec_link_txt, rcsp_headline and rcsp_description parameters in versions up to, and including, 1.8.1 due to…

  • CVE-2020-36752MedJul 12, 2023
    risk 0.28cvss 4.3epss 0.00

    The Coming Soon & Maintenance Mode Page plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.57. This is due to missing or incorrect nonce validation on the save_meta_box() function. This makes it possible for unauthenticated…