Attackers Abuse XSS Vulnerability in WordPress Plugin to Display Malverts

The WordPress ‘Coming Soon Page and Maintenance Mode’ plugin, version 1.7.8 or below, has an XSS vulnerability that enables attackers to inject HTML or JavaScript code. The code is injected into the blog front-end and causes the site to redirect users by way of pop-up ads. Researchers that discovered the flaw said, “The eventual destination sites vary in scope and intent. Some redirects land users on typical illegitimate ads for pharmaceuticals and pornography, while others attempt to direct malicious activity against the user’s browser.” Version 1.7.9 has patched the flaw, and WordPress users are urged to update immediately.

Relevant URL(s):