Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3
Critical0
High0
Medium3
Reset
Showing 1-3 of 3 records
Threat Entry Updated 2025-03-24

CVE-2024-1473 - Coming Soon Maintenance Mode Plugin

The Coming Soon & Maintenance Mode by Colorlib plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.0.99 via the REST API. This makes it possible for unauthenticated attackers to obtain post and page contents via REST API thus bypassing maintenance mode protection provided by the plugin.

PLUGIN Coming Soon Maintenance Mode

CVE-2024-1473

MEDIUM CVSS 5.3 2024-03-20
Open Full Technical Breakdown
Threat Entry Updated 2025-02-27

CVE-2024-1475 - Coming Soon Maintenance Mode Plugin

The Coming Soon Maintenance Mode plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.5 via the REST API. This makes it possible for unauthenticated attackers to obtain post and page content thus bypassing the protection provided by the plugin.

PLUGIN Coming Soon Maintenance Mode

CVE-2024-1475

MEDIUM CVSS 5.3 2024-02-29
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2022-1945 - Coming Soon Maintenance Mode Plugin

The Coming Soon & Maintenance Mode by Colorlib WordPress plugin before 1.0.99 does not sanitize and escape some settings, allowing high privilege users such as admin to perform Stored Cross-Site Scripting when unfiltered_html is disallowed (for example in multisite setup)

PLUGIN Coming Soon Maintenance Mode

CVE-2022-1945

MEDIUM CVSS 4.8 2022-06-20
Open Full Technical Breakdown
Scroll to top