Where should operators start on this Plugin hub?

Start with the priority CVE quick links, then open the full report for affected versions, remediation notes, CVSS vectors, and source references.

Plugin Vulnerability Hub

Plugin 12 known issues Latest disclosed Jul 11, 2024

Coming Soon Page – Responsive Coming Soon & Maintenance Mode Vulnerabilities

Q: How many Coming Soon Page – Responsive Coming Soon & Maintenance Mode vulnerabilities have patch guidance?

12 of 12 tracked Coming Soon Page – Responsive Coming Soon & Maintenance Mode records include a published patch path.

Review known vulnerability records for the WordPress plugin Coming Soon Page – Responsive Coming Soon & Maintenance Mode (`responsive-coming-soon-page`), including severity, CVE references, affected versions, and patch status.

Recent tracked CVEs on this page include CVE-2024-38756, CVE-2022-46849 and CVE-2018-5657, so operators can jump from disclosure to patch validation without scanning the full feed first.

View on WordPress.org Back to Feed

Known Records

High or Critical

Patch Coverage

100%

Last Updated

Jul 17, 2024

Priority CVE Quick Links

Fast paths into Coming Soon Page – Responsive Coming Soon & Maintenance Mode CVE reports

Start with the highest-signal CVE records for this WordPress plugin before scanning the full vulnerability feed.

Indexed CVEs

CVE-2018-5658 High 1.1.19

CVE-2018-5658 Coming Soon Page – Responsive Coming Soon & Maintenance Mode Cross-Site Request Forgery

Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Request Forgery

CVE-2022-46849 High 1.6.0

CVE-2022-46849 Coming Soon Page – Responsive Coming Soon & Maintenance Mode SQL Injection

Coming Soon Page <= 1.5.9 - Authenticated (Administrator+) SQL Injection

CVE-2018-5657 Medium 1.1.19

CVE-2018-5657 Coming Soon Page – Responsive Coming Soon & Maintenance Mode Stored Cross-Site Scripting

Coming Soon <= 1.1.18 - Stored Cross-Site Scripting

CVE-2018-5663 Medium 1.1.19

CVE-2018-5663 Coming Soon Page – Responsive Coming Soon & Maintenance Mode Cross-Site Scripting

Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Scripting via button_text_link parameter

CVE-2018-5662 Medium 1.1.19

CVE-2018-5662 Coming Soon Page – Responsive Coming Soon & Maintenance Mode Cross-Site Scripting

Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Scripting via counter_title parameter

CVE-2018-5666 Medium 1.1.19

CVE-2018-5666 Coming Soon Page – Responsive Coming Soon & Maintenance Mode Cross-Site Scripting

Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Scripting via bg_color parameter

CVE-2018-5664 Medium 1.1.19

CVE-2018-5664 Coming Soon Page – Responsive Coming Soon & Maintenance Mode Cross-Site Scripting

Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Scripting via social_icon_1 parameter

CVE-2018-5659 Medium 1.1.19

CVE-2018-5659 Coming Soon Page – Responsive Coming Soon & Maintenance Mode Stored Cross-Site Scripting

Coming Soon < 1.1.19 - Stored Cross-Site Scripting

Coverage Snapshot

What this page helps you verify fast

This hub clusters every indexed record for Coming Soon Page – Responsive Coming Soon & Maintenance Mode so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.

Patch Visibility

12 records include a published patch path, leaving 0 with no listed safe release yet.

Severity Mix

0 critical and 2 high severity findings.

Recent CVEs

CVE-2024-38756, CVE-2022-46849 and CVE-2018-5657

Reference Workflow

Jump from the hub into the full report when you need remediation notes, exploit context, CVSS vectors, or source references.

Triage First

Open the records most likely to drive action

These recent records surface the CVE strings, patch cues, and direct report links most operators need first.

CVE-2024-38756 Medium No patch listed

CVE-2024-38756: Coming Soon <= 1.6.3 - Unauthenticated Information Exposure

The Coming Soon Page – Responsive Coming Soon & Maintenance Mode plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.6.3. This makes...

Published

Jul 11, 2024

Patch Status

Not published

Open CVE-2024-38756 Report

CVE-2022-46849 High Patch path listed

CVE-2022-46849: Coming Soon Page <= 1.5.9 - Authenticated (Administrator+) SQL Injection

The Coming Soon Page plugin for WordPress is vulnerable to SQL Injection via the 'rem' parameter in versions up to, and including, 1.5.9 due to insufficient escaping on the user supplied par...

Published

Jul 05, 2023

Patch Status

1.6.0

Open CVE-2022-46849 Report

CVE-2018-5657 Medium Patch path listed

CVE-2018-5657: Coming Soon <= 1.1.18 - Stored Cross-Site Scripting

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php counter_title_icon parameter.

Published

Jan 22, 2018

Patch Status

1.1.19

Open CVE-2018-5657 Report

Known Vulnerabilities

Reports for Coming Soon Page – Responsive Coming Soon & Maintenance Mode

Sorted by latest disclosure date so newly published issues surface first.

Plugin Medium Patched: No CVE-2024-38756

CVE-2024-38756: Coming Soon <= 1.6.3 - Unauthenticated Information Exposure

The Coming Soon Page – Responsive Coming Soon & Maintenance Mode plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.6.3. This makes it possible for unauthenticated attackers to extract potentially sensitive information.

Published

Jul 11, 2024

Patched Release

Not published

Affected Versions

Versions up to 1.6.3

Next Step

Open the full report for remediation notes and references.

Open CVE-2024-38756 Report Open CVE Reference

Plugin High Patched: Yes CVE-2022-46849

CVE-2022-46849: Coming Soon Page <= 1.5.9 - Authenticated (Administrator+) SQL Injection

The Coming Soon Page plugin for WordPress is vulnerable to SQL Injection via the 'rem' parameter in versions up to, and including, 1.5.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possibl...

Published

Jul 05, 2023

Patched Release

1.6.0

Affected Versions

Versions up to 1.5.9

Next Step

Update to 1.6.0 or newer if supported.

Open CVE-2022-46849 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2018-5657

CVE-2018-5657: Coming Soon <= 1.1.18 - Stored Cross-Site Scripting

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php counter_title_icon parameter.

Published

Jan 22, 2018

Patched Release

1.1.19

Affected Versions

Versions before 1.1.19

Next Step

Update to 1.1.19 or newer if supported.

Open CVE-2018-5657 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2018-5663

CVE-2018-5663: Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Scripting via button_text_link parameter

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php button_text_link parameter.

Published

Jan 12, 2018

Patched Release

1.1.19

Affected Versions

Versions up to 1.1.18

Next Step

Update to 1.1.19 or newer if supported.

Open CVE-2018-5663 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2018-5662

CVE-2018-5662: Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Scripting via counter_title parameter

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php counter_title parameter.

Published

Jan 12, 2018

Patched Release

1.1.19

Affected Versions

Versions up to 1.1.18

Next Step

Update to 1.1.19 or newer if supported.

Open CVE-2018-5662 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2018-5666

CVE-2018-5666: Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Scripting via bg_color parameter

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php bg_color parameter.

Published

Jan 12, 2018

Patched Release

1.1.19

Affected Versions

Versions up to 1.1.18

Next Step

Update to 1.1.19 or newer if supported.

Open CVE-2018-5666 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2018-5664

CVE-2018-5664: Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Scripting via social_icon_1 parameter

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php social_icon_1 parameter.

Published

Jan 12, 2018

Patched Release

1.1.19

Affected Versions

Versions up to 1.1.18

Next Step

Update to 1.1.19 or newer if supported.

Open CVE-2018-5664 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2018-5659

CVE-2018-5659: Coming Soon < 1.1.19 - Stored Cross-Site Scripting

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php coming-soon_title parameter.

Published

Jan 12, 2018

Patched Release

1.1.19

Affected Versions

Versions before 1.1.19

Next Step

Update to 1.1.19 or newer if supported.

Open CVE-2018-5659 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2018-5665

CVE-2018-5665: Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Scripting via logo_height parameter

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php logo_height parameter.

Published

Jan 12, 2018

Patched Release

1.1.19

Affected Versions

Versions up to 1.1.18

Next Step

Update to 1.1.19 or newer if supported.

Open CVE-2018-5665 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2018-5661

CVE-2018-5661: Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Scripting via logo_width parameter

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php logo_width parameter.

Published

Jan 12, 2018

Patched Release

1.1.19

Affected Versions

Versions up to 1.1.18

Next Step

Update to 1.1.19 or newer if supported.

Open CVE-2018-5661 Report Open CVE Reference

Plugin High Patched: Yes CVE-2018-5658

CVE-2018-5658: Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Request Forgery

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. CSRF exists via wp-admin/admin.php.

Published

Jan 12, 2018

Patched Release

1.1.19

Affected Versions

Versions up to 1.1.18

Next Step

Update to 1.1.19 or newer if supported.

Open CVE-2018-5658 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2018-5660

CVE-2018-5660: Coming Soon Page – Responsive Coming Soon & Maintenance Mode <= 1.1.18 - Cross-Site Scripting via coming-soon_sub_title parameter

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php coming-soon_sub_title parameter.

Published

Jan 12, 2018

Patched Release

1.1.19

Affected Versions

Versions up to 1.1.18

Next Step

Update to 1.1.19 or newer if supported.

Open CVE-2018-5660 Report Open CVE Reference