重大性スコア(CVS)

Details

Removal of subscribed users due to Cross Site Request Forgery (CSRF) vulnerability discovered in the WordPress WP Maintenance Mode & Coming Soon plugin (version <= 2.4.4).

solution

Update the WordPress WP Maintenance Mode & Coming Soon plugin to the latest version available (at least 2.4.5).

Sources.

LightStart – Maintenance Mode, Coming Soon and Landing Page Builder

Easy Drag & Drop Page Builder that adds a splash page to your site that it's perfect for a coming soon page, maintenance or landing page.

wordpress.org