← Back

Coming Soon & Maintenance Mode

coming_soon_&_maintenance_mode

Vendor: Colorlib • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-1473
1Colorlib
1Coming Soon & Maintenance Mode
Apr 8, 2026
Mar 20, 2024
N/A· v4
5.3 MEDIUM· v3
N/A· v2
The Coming Soon & Maintenance Mode by Colorlib plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.0.99 via the REST API. This makes it possible for unauthenticated attacker...Show more
The Coming Soon & Maintenance Mode by Colorlib plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.0.99 via the REST API. This makes it possible for unauthenticated attackers to obtain post and page contents via REST API thus bypassing maintenance mode protection provided by the plugin.Show less
CVE-2022-1945
1Colorlib
1Coming Soon & Maintenance Mode
Nov 21, 2024
Jun 20, 2022
N/A· v4
4.8 MEDIUM· v3
3.5 LOW· v2
The Coming Soon & Maintenance Mode by Colorlib WordPress plugin before 1.0.99 does not sanitize and escape some settings, allowing high privilege users such as admin to perform Stored Cross-Site Scripting when unfiltered...Show more
The Coming Soon & Maintenance Mode by Colorlib WordPress plugin before 1.0.99 does not sanitize and escape some settings, allowing high privilege users such as admin to perform Stored Cross-Site Scripting when unfiltered_html is disallowed (for example in multisite setup)Show less