CVE-2021-24577

CVE-2021-24577: Coming Soon and Maintenance Mode < 3.5.3 - Authenticated Stored XSS

Vendor Unknown
Product Coming soon and Maintenance mode
Weakness CWE-79 · XSS
Published October 11, 2021
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

The Coming soon and Maintenance mode WordPress plugin before 3.5.3 does not properly sanitize inputs submitted by authenticated users when setting adding or modifying coming soon or maintenance mode pages, leading to stored XSS.

Key dates

02Disclosure timeline

October 11, 2021 CVE published
August 3, 2024 Record updated