The Maintenance Page plugin for WordPress has a security issue that allows unauthorized access to data. This is because it does not have a check in place to verify if the user has the right permissions. This vulnerability exists in all versions up to 1.0.8 and allows attackers who are logged in with subscriber or higher access to download a list of subscriber emails.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
