ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Maintenance Mode Plugin <= 2.0.6 - Remote Code Execution

Product
Maintenance Mode
Description
This plugin is prone to an authenticated multisite remote code execution vulnerability.
Solution
Update the plugin.
Classification
Type Arbitrary Code Execution
OWASP Top 10 A1: Injection
References
Wordfence
CVE
Name CVE-N/A
Versions
Affected In <= 2.0.6
Fixed In 2.0.7
Disclosure date
2016-07-06
Submitter
ThreatPress