Vulnerabilities > Obox

DATE CVE VULNERABILITY TITLE RISK
2023-03-17 CVE-2022-46854 Unspecified vulnerability in Obox Launchpad - Coming Soon & Maintenance Mode Plugin 1.0.13
Cross-Site Request Forgery (CSRF) vulnerability in Obox Themes Launchpad – Coming Soon & Maintenance Mode plugin <= 1.0.13 versions.
network
low complexity
obox
8.8
2023-01-13 CVE-2023-0295 Unspecified vulnerability in Obox Launchpad - Coming Soon & Maintenance Mode Plugin 1.0.13
The Launchpad plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several of its settings parameters in versions up to, and including, 1.0.13 due to insufficient input sanitization and output escaping.
network
low complexity
obox
4.8