Auth bypass in 8degree Themes Coming Soon Landing Page And Maintenance Mode Wordpress Plugin
CVE-2022-47429
Missing Authorization vulnerability in 8Degree Themes Coming Soon Landing Page and Maintenance Mode WordPress Plugin allows Retrieve Embedded Sensitive Data.This issue affects Coming Soon Landing Page and Maintenance Mode WordPress Plugin…
Vulnerability class: Broken Access Control
EPSS: 0.005 (38.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N.
Affected products
Weakness classification (CWE)
Public proof-of-concept exploits
References
- audit@patchstack.com (vdb-entry)
Frequently asked questions
- What is CVE-2022-47429?
- CVE-2022-47429 is a medium-severity vulnerability in 8degree Themes Coming Soon Landing Page And Maintenance Mode Wordpress Plugin, classified under Missing Authorization. CVSS score: 5.3/10. Published 2024-12-13.
- How severe is CVE-2022-47429?
- Medium severity. CVSS v3 base score is 5.3 out of 10.
- Is CVE-2022-47429 known to be exploited?
- 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.