A plugin used for WordPress called Maintenance Mode has a security issue that can expose sensitive information. This problem exists in all versions up to and including 2.5.0 through the REST API. This means that hackers who are not logged in can access the content of posts and pages through the API, even though the plugin is supposed to protect the content.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
