cleantalk
Vulnerabilities and Security Researches

CMP – Coming Soon & Maintenance Plugin by NiteoThemes, CVE-2023-1263

CVE, Research URL

CVE-2023-1263

Home page URL

Security reports for CMP – Coming Soon & Maintenance Plugin by NiteoThemes

Application

CMP – Coming Soon & Maintenance Plugin by NiteoThemes

Published on
Mar 08, 2023
Research Description
The CMP – Coming Soon & Maintenance plugin for WordPress is vulnerable to Information Exposure in versions up to, and including, 4.1.6 via the cmp_get_post_detail function. This can allow unauthenticated individuals to obtain the contents of any non-password-protected, published post or page even when maintenance mode is enabled.
Affected versions
max 4.1.7.
Status
vulnerable
Previous vulnerability researches
CMP – Coming Soon & Maintenance Plugin by NiteoThemes (CVE-2025-32118) , Apr 06, 2025
CMP – Coming Soon & Maintenance Plugin by NiteoThemes (CVE-2023-1263) , Jun 07, 2024
CMP – Coming Soon & Maintenance Plugin by NiteoThemes (CVE-2023-2159) , Jun 07, 2024
CMP – Coming Soon & Maintenance Plugin by NiteoThemes (CVE-2022-0188) , Jun 07, 2024
CMP – Coming Soon & Maintenance Plugin by NiteoThemes (CVE-2026-6518) , Apr 19, 2026
New vulnerability
WooMS (CVE-2025-57957) , Apr 20, 2026
Simple User Registration (CVE-2026-0844) , Apr 20, 2026
Kubio AI Page Builder (CVE-2026-5427) , Apr 20, 2026
Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder (CVE-2026-3330) , Apr 20, 2026
Sell Photo (2ce065d802b631a3fa4492d5366f0ffc4e0ee37b) , Apr 19, 2026