oss-sec mailing list archives
Re: WordPress Plugin "Under Construction & Maintenance Mode": Exposed debug functionality
From: Moritz Mühlenhoff <jmm () inutil org>
Date: Tue, 20 Jan 2026 19:26:57 +0000
mohammed gaming 222 wrote:
Hello OSS-Security Team, I would like to responsibly disclose a security vulnerability identified in the WordPress plugin *Under Construction & Maintenance Mode*.
Mohammed, this is not a criticism to you personally, I assume this
was posted in good faith.
But on a more general level, please let's avoid posting WordPress plugin
vulnerabilities on oss-sec.
Looking at the Debian Security Tracker there are have been 9773 CVE IDs
on WordPress plugins in 2025, they are not packaged in any Linux
distribution and posting a few individual ones really misses the
"There has to be desirable information for others in the Open Source
community" aspect of the list charter.
Cheers,
Moritz
Current thread:
- WordPress Plugin "Under Construction & Maintenance Mode": Exposed debug functionality mohammed gaming 222 (Jan 20)
- Re: WordPress Plugin "Under Construction & Maintenance Mode": Exposed debug functionality Moritz Mühlenhoff (Jan 20)
- Re: WordPress Plugin "Under Construction & Maintenance Mode": Exposed debug functionality Hanno Böck (Jan 21)
- Re: WordPress Plugin "Under Construction & Maintenance Mode": Exposed debug functionality Soatok Dreamseeker (Jan 21)
- Re: WordPress Plugin "Under Construction & Maintenance Mode": Exposed debug functionality Hanno Böck (Jan 21)
- Re: WordPress Plugin "Under Construction & Maintenance Mode": Exposed debug functionality Alan Coopersmith (Jan 20)
- Re: WordPress Plugin "Under Construction & Maintenance Mode": Exposed debug functionality Moritz Mühlenhoff (Jan 20)