Hostinger: Security Vulnerabilities
The Hostinger plugin for WordPress is vulnerable to unauthorized plugin settings update due to a missing capability check on the function publish_website in all versions up to, and including, 1.9.7. This makes it possible for unauthenticated attackers to enable and disable maintenance mode.
CVSS Score
7.3
EPSS Score
0.002
Published
2024-01-11