Vulnerabilities > Themeisle > WP Maintenance Mode Coming Soon > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-07-11 CVE-2022-1576 Cross-Site Request Forgery (CSRF) vulnerability in Themeisle WP Maintenance Mode & Coming Soon
The WP Maintenance Mode & Coming Soon WordPress plugin before 2.4.5 is lacking CSRF when emptying the subscribed users list, which could allow attackers to make a logged in admin perform such action via a CSRF attack
network
themeisle CWE-352
4.3