Vulnerabilities and security researches forcoming-soon coming-soon
Direction: descendingMay 09, 2025
Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode # CVE-2025-3949
- CVE, Research URL
- Home page URL
- Application
- Date
- -
- Research Description
- Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode [coming-soon] < 6.18.16 CVE-2025-3949
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
Jan 29, 2025
Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode # CVE-2025-24540
- CVE, Research URL
- Home page URL
- Application
- Date
- Jan 27, 2025
- Research Description
- Cross-Site Request Forgery (CSRF) vulnerability in SeedProd Coming Soon Page, Under Construction & Maintenance Mode by SeedProd allows Cross Site Request Forgery. This issue affects Coming Soon Page, Under Construction & Maintenance Mode by SeedProd: from n/a through 6.18.9.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
Sep 28, 2024
Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode # CVE-2024-47299
- CVE, Research URL
- Home page URL
- Application
- Date
- Oct 06, 2024
- Research Description
- Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SeedProd Coming Soon Page, Under Construction & Maintenance Mode by SeedProd allows Stored XSS.This issue affects Coming Soon Page, Under Construction & Maintenance Mode by SeedProd: from n/a through 6.17.4.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
Jun 07, 2024
Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode # CVE-2023-4975
- CVE, Research URL
- Home page URL
- Application
- Date
- Oct 20, 2023
- Research Description
- The Website Builder by SeedProd plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 6.15.13.1. This is due to missing or incorrect nonce validation on functionality in the builder.php file. This makes it possible for unauthenticated attackers to change the stripe connect token via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode # CVE-2024-1072
- CVE, Research URL
- Home page URL
- Application
- Date
- Feb 06, 2024
- Research Description
- The Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the seedprod_lite_new_lpage function in all versions up to, and including, 6.15.21. This makes it possible for unauthenticated attackers to change the contents of coming-soon, maintenance pages, login and 404 pages set up with the plugin. Version 6.15.22 addresses this issue but introduces a bug affecting admin pages. We suggest upgrading to 6.15.23.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode # CVE-2020-15038
- CVE, Research URL
- Home page URL
- Application
- Date
- Jun 25, 2020
- Research Description
- The SeedProd coming-soon plugin before 5.1.1 for WordPress allows XSS.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode # CVE-2024-32088
- CVE, Research URL
- Home page URL
- Application
- Date
- Apr 15, 2024
- Research Description
- Cross-Site Request Forgery (CSRF) vulnerability in SeedProd Coming Soon Page, Under Construction & Maintenance Mode by SeedProd.This issue affects Coming Soon Page, Under Construction & Maintenance Mode by SeedProd: from n/a through 6.15.20.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable