Filtered by vendor Wp Maintenance Project Subscriptions
Filtered by product Wp Maintenance Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-30536 1 Wp Maintenance Project 1 Wp Maintenance 2024-11-21 3.4 Low
Authenticated Stored Cross-Site Scripting (XSS) vulnerability in Florent Maillefaud's WP Maintenance plugin <= 6.0.7 at WordPress.
CVE-2021-36828 1 Wp Maintenance Project 1 Wp Maintenance 2024-11-21 4.8 Medium
Authenticated (admin+) Stored Cross-Site Scripting (XSS) in WP Maintenance plugin <= 6.0.7 versions.
CVE-2019-19979 1 Wp Maintenance Project 1 Wp Maintenance 2024-11-21 8.8 High
A flaw in the WordPress plugin, WP Maintenance before 5.0.6, allowed attackers to enable a vulnerable site's maintenance mode and inject malicious code affecting site visitors. There was CSRF with resultant XSS.