Wp Maintenance Project: >> Wp Maintenance >> 1.6 Security Vulnerabilities
Authenticated Stored Cross-Site Scripting (XSS) vulnerability in Florent Maillefaud's WP Maintenance plugin <= 6.0.7 at WordPress.
CVSS Score
3.4
EPSS Score
0.007
Published
2022-07-21
Authenticated (admin+) Stored Cross-Site Scripting (XSS) in WP Maintenance plugin <= 6.0.7 versions.
CVSS Score
4.8
EPSS Score
0.004
Published
2022-04-15
A flaw in the WordPress plugin, WP Maintenance before 5.0.6, allowed attackers to enable a vulnerable site's maintenance mode and inject malicious code affecting site visitors. There was CSRF with resultant XSS.
CVSS Score
8.8
EPSS Score
0.002
Published
2019-12-26