WordPress Under Construction, Coming Soon & Maintenance Mode plugin <= 1.1.1 - Server-Side Request Forgery (SSRF) vulnerability

under-construction-maintenance-mode

Software
Under Construction, Coming Soon & Maintenance Mode
Versions
<= 1.1.1
Disclosure date
2021-02-26
CVE
CVE-N/A
Credits
Classification
Server Side Request Forgery (SSRF)
OWASP Top 10

Are your websites subject to this vulnerability?

Details

Server-Side Request Forgery (SSRF) vulnerability found by Mr.F in WordPress Under Construction, Coming Soon & Maintenance Mode plugin (versions <= 1.1.1).

Solution

Update the WordPress Under Construction, Coming Soon & Maintenance Mode plugin to the latest available version (at least 1.1.2).

Found a vulnerability that puts your sites at risk?

Found a vulnerability? Help us secure the web and join our community of ethical hackers.

Are you the developer of this software? Hire our researchers for a thorough security audit.