Every CVE whose affected-product data names Niteothemes Cmp, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-36730 — CVSS 8.3 (high): The CMP for WordPress is vulnerable to authorization bypass due to a missing capability check on the cmp_get_post_detail()…
CVE-2022-0188 — CVSS 5.3 (medium): The CMP WordPress plugin before 4.0.19 allows any user, even not logged in, to arbitrarily change the coming soon page layout.
CVE-2023-2159 — CVSS 5.3 (medium): The CMP – Coming Soon & Maintenance plugin for WordPress is vulnerable to Maintenance Mode Bypass in versions up to, and including…