CVE-2021-36829

Name of the Vulnerable Software and Affected Versions MyThemeShop Launcher: Coming Soon & Maintenance Mode plugin versions prior to 1.1.12 is not specified, however the version is <= 1.0.11

Description The issue is an Authenticated Stored Cross-Site Scripting (XSS) vulnerability. This means that an attacker with admin or higher privileges can inject malicious scripts into the application, which can then be executed by other users.

Recommendations For MyThemeShop Launcher: Coming Soon & Maintenance Mode plugin versions prior to or equal to 1.0.11, update to a version greater than 1.0.11 to resolve the issue.