Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3
Critical0
High0
Medium3
Reset
Showing 1-3 of 3 records
Threat Entry Updated 2024-11-21

CVE-2022-0199 - Coming Soon And Maintenance Mode Plugin

The Coming soon and Maintenance mode WordPress plugin before 3.6.8 does not have CSRF check in its coming_soon_send_mail AJAX action, allowing attackers to make logged in admin to send arbitrary emails to all subscribed users via a CSRF attack

PLUGIN Coming Soon And Maintenance Mode

CVE-2022-0199

MEDIUM CVSS 4.3 2022-02-21
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2022-0164 - Coming Soon And Maintenance Mode Plugin

The Coming soon and Maintenance mode WordPress plugin before 3.5.3 does not have authorisation and CSRF checks in its coming_soon_send_mail AJAX action, allowing any authenticated users, with a role as low as subscriber to send arbitrary emails to all subscribed users

PLUGIN Coming Soon And Maintenance Mode

CVE-2022-0164

MEDIUM CVSS 4.3 2022-02-21
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24577 - Coming Soon And Maintenance Mode Plugin

The Coming soon and Maintenance mode WordPress plugin before 3.5.3 does not properly sanitize inputs submitted by authenticated users when setting adding or modifying coming soon or maintenance mode pages, leading to stored XSS.

PLUGIN Coming Soon And Maintenance Mode

CVE-2021-24577

MEDIUM CVSS 5.4 2021-10-11
Open Full Technical Breakdown
Scroll to top