RSS   Vulnerabilities for
'Coming soon \& maintenance mode'
   RSS

2022-06-20
 
CVE-2022-1945

CWE-79
 

 
The Coming Soon & Maintenance Mode by Colorlib WordPress plugin before 1.0.99 does not sanitize and escape some settings, allowing high privilege users such as admin to perform Stored Cross-Site Scripting when unfiltered_html is disallowed (for example in multisite setup)

 


Copyright 2024, cxsecurity.com

 

Back to Top