Vulnerabilities and security researches forsite-offline site-offline

Jun 07, 2024

CVE, Research URL: CVE-2022-1580
Home page URL: Security reports for Site Offline Or Coming Soon Or Maintenance Mode
Application: Site Offline Or Coming Soon Or Maintenance Mode
Date: Sep 19, 2022
Research Description: The Site Offline Or Coming Soon Or Maintenance Mode WordPress plugin before 1.5.3 prevents users from accessing a website but does not do so if the URL contained certain keywords. Adding those keywords to the URL's query string would bypass the plugin's main feature.
Affected versions: max 1.5.3.
Status: vulnerable

CVE, Research URL: CVE-2023-49190
Home page URL: Security reports for Site Offline Or Coming Soon Or Maintenance Mode
Application: Site Offline Or Coming Soon Or Maintenance Mode
Date: Dec 15, 2023
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chandra Shekhar Sahu Site Offline Or Coming Soon Or Maintenance Mode allows Stored XSS.This issue affects Site Offline Or Coming Soon Or Maintenance Mode: from n/a through 1.5.6.
Affected versions: max 1.5.7.
Status: vulnerable

CVE, Research URL: CVE-2020-35773
Home page URL: Security reports for Site Offline Or Coming Soon Or Maintenance Mode
Application: Site Offline Or Coming Soon Or Maintenance Mode
Date: Dec 29, 2020
Research Description: The site-offline plugin before 1.4.4 for WordPress lacks certain wp_create_nonce and wp_verify_nonce calls, aka CSRF.
Affected versions: max 1.4.4.
Status: vulnerable

Aug 25, 2025

CVE, Research URL: CVE-2025-48348
Home page URL: Security reports for Site Offline Or Coming Soon Or Maintenance Mode
Application: Site Offline Or Coming Soon Or Maintenance Mode
Date: -
Research Description: Site Offline Or Coming Soon Or Maintenance Mode [site-offline] <= 1.5.7 (unfixed) CVE-2025-48348
Affected versions: max 1.5.7.
Status: vulnerable