VYPR

Coming Soon \& Maintenance

by Niteothemes

CVEs (3)

  • CVE-2026-6518HigApr 18, 2026
    risk 0.57cvss 8.8epss 0.01

    The CMP – Coming Soon & Maintenance Plugin by NiteoThemes plugin for WordPress is vulnerable to arbitrary file upload and remote code execution in all versions up to, and including, 4.1.16 via the `cmp_theme_update_install` AJAX action. This is due to the function only…

  • CVE-2023-1263MedMar 7, 2023
    risk 0.36cvss 5.3epss 0.01

    The CMP – Coming Soon & Maintenance plugin for WordPress is vulnerable to Information Exposure in versions up to, and including, 4.1.6 via the cmp_get_post_detail function. This can allow unauthenticated individuals to obtain the contents of any non-password-protected,…

  • CVE-2022-0601Mar 14, 2022
    risk 0.00cvss epss 0.01

    The Countdown, Coming Soon, Maintenance WordPress plugin before 2.2.9 does not sanitize and escape the post parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting.