Vulnerabilities > Themegrill > Maintenance Page > 1.0

DATE	CVE	VULNERABILITY TITLE	RISK
2024-03-13	CVE-2024-1370	Missing Authorization vulnerability in Themegrill Maintenance Page The Maintenance Page plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the subscribe_download function hooked via AJAX action in all versions up to, and including, 1.0.8. network low complexity themegrill CWE-862	4.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.