← Back to CVEs
CVE-2022-1580
MEDIUM4.3
Description
The Site Offline Or Coming Soon Or Maintenance Mode WordPress plugin before 1.5.3 prevents users from accessing a website but does not do so if the URL contained certain keywords. Adding those keywords to the URL's query string would bypass the plugin's main feature.
CVE Details
CVSS v3.1 Score4.3
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
Published9/19/2022
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
freehtmldesigns:site_offline
Weaknesses (CWE)
CWE-639
References
https://wpscan.com/vulnerability/7b6f91cd-5a00-49ca-93ff-db7220d2630a(contact@wpscan.com)
https://wpscan.com/vulnerability/7b6f91cd-5a00-49ca-93ff-db7220d2630a(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.