Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SeedProd — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting SeedProd. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Seedprod is a WordPress landing page and coming soon plugin with 10 recorded CVEs. Its core function allows users to create temporary pages before site launches. Historically, vulnerabilities have included stored cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws, often stemming from insufficient input validation and improper capability checks. Notable security characteristics include its widespread use, making it a frequent target for attacks. Major incidents have involved unauthenticated RCE vulnerabilities that could allow complete site compromise, particularly in versions prior to 4.0.0, highlighting ongoing security challenges in maintaining secure functionality across its features.

Top products by SeedProd: Coming Soon Page, Under Construction & Maintenance Mode by SeedProd Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode WordPress Notification Bar 404 Page by SeedProd
CVE IDTitleCVSSSeverityPublished
CVE-2026-39464 WordPress Coming Soon Page, Under Construction & Maintenance Mode by SeedProd plugin <= 6.19.8 - Server Side Request Forgery (SSRF) vulnerability — Coming Soon Page, Under Construction & Maintenance Mode by SeedProdCWE-918 5.5 Medium2026-04-08
CVE-2026-27368 WordPress Coming Soon Page, Under Construction & Maintenance Mode by SeedProd plugin <= 6.19.8 - Broken Access Control vulnerability — Coming Soon Page, Under Construction & Maintenance Mode by SeedProdCWE-862 5.3 Medium2026-02-19
CVE-2025-49322 WordPress 404 Page by SeedProd < 1.0.2 - Cross Site Scripting (XSS) Vulnerability — 404 Page by SeedProdCWE-79 5.9 Medium2025-06-06
CVE-2025-3949 Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode <= 6.18.15 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure — Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance ModeCWE-862 4.3 Medium2025-05-09
CVE-2025-24540 WordPress Website Builder by SeedProd plugin <= 6.18.9 - Cross Site Request Forgery (CSRF) vulnerability — Coming Soon Page, Under Construction & Maintenance Mode by SeedProdCWE-352 4.3 Medium2025-01-27
CVE-2024-47299 WordPress Website Builder by SeedProd <= 6.17.4 - Cross Site Scripting (XSS) vulnerability — Coming Soon Page, Under Construction & Maintenance Mode by SeedProdCWE-79 5.9 Medium2024-10-06
CVE-2024-37556 WordPress WordPress Notification Bar plugin <= 1.3.10 - Cross Site Scripting (XSS) vulnerability — WordPress Notification BarCWE-79 5.9 Medium2024-07-21
CVE-2024-32088 WordPress Website Builder plugin <= 6.15.20 - Cross Site Request Forgery (CSRF) vulnerability — Coming Soon Page, Under Construction & Maintenance Mode by SeedProdCWE-352 4.3 Medium2024-04-15
CVE-2024-1072 Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode <= 6.15.21 - Missing Authorization via seedprod_lite_new_lpage — Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance ModeCWE-862 8.2 High2024-02-05
CVE-2023-4975 Website Builder by SeedProd <= 6.15.13.1 - Cross-Site Request Forgery to Settings Update — Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance ModeCWE-352 4.3 Medium2023-10-20

This page lists every published CVE security advisory associated with SeedProd. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.