Description

WordPress Plugin Under Construction/Maintenance Mode from Acurax is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin Under Construction/Maintenance Mode from Acurax version 2.5.2 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 2.5.3 or latest

References

https://wordpress.org/plugins/coming-soon-maintenance-mode-from-acurax/#changelog

Related Vulnerabilities

Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-13662)

WordPress Plugin CSS & JavaScript Toolbox SQL Injection (9.2)

WordPress Plugin Cardinity Payment Gateway for WooCommerce Cross-Site Scripting (3.0.6)

WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Multiple Cross-Site Scripting Vulnerabilities (1.8.4.2)

WordPress Plugin Contact Form Email Multiple Vulnerabilities (1.2.65)

Severity

High

Tags

Missing Update