The Curtain plugin for WordPress is not secure in versions up to 1.0.1. Unauthenticated users (users who haven’t logged in) can turn maintenance mode on and off without permission. This could put a vulnerable website at risk.
The Curtain plugin for WordPress is not secure in versions up to 1.0.1. Unauthenticated users (users who haven’t logged in) can turn maintenance mode on and off without permission. This could put a vulnerable website at risk.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.