Vulnerabilities (CVE)

Filtered by vendor Themeisle Subscribe
Filtered by product Wp Maintenance Mode \& Coming Soon
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-1576 1 Themeisle 1 Wp Maintenance Mode \& Coming Soon 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
The WP Maintenance Mode & Coming Soon WordPress plugin before 2.4.5 is lacking CSRF when emptying the subscribed users list, which could allow attackers to make a logged in admin perform such action via a CSRF attack