Description

WordPress Plugin Under Construction is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Under Construction version 3.85 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 3.86 or latest

References

https://plugins.svn.wordpress.org/under-construction-page/trunk/readme.txt

Related Vulnerabilities

Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6203)

WordPress Plugin Secure HTML5 Video Player Cross-Site Scripting (3.3)

phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-20033)

WordPress Plugin WP Booking Cross-Site Scripting (1.4)

WordPress Plugin Easy Contact Form Lite 'sort_row.request.php' SQL Injection (1.0.7)

Severity

High

Tags

Missing Update