Coming Soon & Maintenance Mode
Approved changes feed: RSS · Atom
cpe:2.3:a:colorlib:coming_soon_\&_maintenance_mode:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Colorlib (05dc98e5-dc4d-5a31-bf3c-ad80d796bf26) |
|---|---|
| Product | Coming Soon & Maintenance Mode (66581d7c-46bb-59f5-8137-8d0bdb4f1d37) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-1473 |
vulnerable | 2026-06-08 06:25:40.152400 |
Coming Soon & Maintenance Mode by Colorlib <= 1.0.99 - Information Exposure
MEDIUM (5.3)
The Coming Soon & Maintenance Mode by Colorlib plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.0.99 via the REST API. This makes it possible for unauthenticated attackers to obtain post and page contents via REST API thus bypassing maintenance mode protection provided by the plugin.
Published: 2024-03-20T06:48:24.765Z
Updated: 2026-04-08T16:50:17.898Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-1945 |
vulnerable | 2026-06-08 05:39:14.261093 |
Coming Soon and Maintenance by Colorlib < 1.0.99 - Admin+ Stored Cross Site Scripting
The Coming Soon & Maintenance Mode by Colorlib WordPress plugin before 1.0.99 does not sanitize and escape some settings, allowing high privilege users such as admin to perform Stored Cross-Site Scripting when unfiltered_html is disallowed (for example in multisite setup)
Published: 2022-06-20T10:26:21.000Z
Updated: 2024-08-03T00:24:42.604Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.