Wpdevart Coming Soon Maintenance Mode
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Wpdevart Coming Soon Maintenance Mode.
By the Year
In 2026 there have been 0 vulnerabilities in Wpdevart Coming Soon Maintenance Mode. Coming Soon Maintenance Mode did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 1 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 2 | 4.30 |
| 2021 | 1 | 5.40 |
It may take a day or so for new Coming Soon Maintenance Mode vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Wpdevart Coming Soon Maintenance Mode Security Vulnerabilities
Authentication Bypass via ACL Spoofing in wpdevart CS&M 3.7.3
CVE-2023-49741
- June 04, 2024
Authentication Bypass by Spoofing vulnerability in wpdevart Coming soon and Maintenance mode allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Coming soon and Maintenance mode: from n/a through 3.7.3.
Authentication Bypass by Spoofing
The Coming soon and Maintenance mode WordPress plugin before 3.6.8 does not have CSRF check in its coming_soon_send_mail AJAX action
CVE-2022-0199
4.3 - Medium
- February 21, 2022
The Coming soon and Maintenance mode WordPress plugin before 3.6.8 does not have CSRF check in its coming_soon_send_mail AJAX action, allowing attackers to make logged in admin to send arbitrary emails to all subscribed users via a CSRF attack
Session Riding
The Coming soon and Maintenance mode WordPress plugin before 3.5.3 does not have authorisation and CSRF checks in its coming_soon_send_mail AJAX action
CVE-2022-0164
4.3 - Medium
- February 21, 2022
The Coming soon and Maintenance mode WordPress plugin before 3.5.3 does not have authorisation and CSRF checks in its coming_soon_send_mail AJAX action, allowing any authenticated users, with a role as low as subscriber to send arbitrary emails to all subscribed users
Session Riding
The Coming soon and Maintenance mode WordPress plugin before 3.5.3 does not properly sanitize inputs submitted by authenticated users when setting adding or modifying coming soon or maintenance mode pages
CVE-2021-24577
5.4 - Medium
- October 11, 2021
The Coming soon and Maintenance mode WordPress plugin before 3.5.3 does not properly sanitize inputs submitted by authenticated users when setting adding or modifying coming soon or maintenance mode pages, leading to stored XSS.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Wpdevart Coming Soon Maintenance Mode or by Wpdevart? Click the Watch button to subscribe.
