WordPress Plugin Catch Under Construction is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently change plugin's configuration. WordPress Plugin Catch Under Construction version 1.3.4 is vulnerable; prior versions may also be affected.
Update to plugin version 1.4 or latest
WordPress Plugin Visual Composer:Page Builder for WordPress Local File Inclusion (5.1)
WordPress Plugin Smart Reporter for WooCommerce and WP eCommerce Multiple Unspecified Vulnerabilities (2.9.2)
WordPress Plugin WP-Lister Lite for eBay Directory Traversal (2.0.20)
WordPress Plugin Backup and Restore WordPress-WPBackItUp Arbitrary File Deletion (1.15.3)
WordPress Plugin WP-Syntax Remote PHP Code Execution (0.9.9)