Minimal Coming Soon & Maintenance Mode through 2.10 Cross-Site Request Forgery (CSRF) Vulnerability
A flaw in the WordPress plugin, Minimal Coming Soon & Maintenance Mode through 2.10.
The information has been provided by Vendor
The original article can be found at:https://wordpress.org/plugins/minimal-coming-soon-maintenance-mode/#developers
Allows a CSRF attack to enable maintenance mode, inject XSS, modify several important settings, or include remote files as a logo.
Minimal Coming Soon & Maintenance Mode through 2.10