Lucene search
K

CVE-2019-17574

🗓️ 14 Oct 2019 13:55:36Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 162 Views🌐 WEB

An issue in Popup Maker plugin before 1.8.13 for WordPress allows unauthenticated attackers to partially control do_action function arguments, leading to invocation of specific methods

Related
Detection
Refs
Paths
Social
ReporterTitlePublishedViews
Family
Circl
CVE-2019-17574
8 Jan 202414:41
circl
CNVD
WordPress Popup Maker Plugin Has Unspecified Vulnerability
16 Oct 201900:00
cnvd
Cvelist
CVE-2019-17574
14 Oct 201913:55
cvelist
Nuclei
Popup-Maker < 1.8.12 - Broken Authentication
12 Jul 202309:13
nuclei
Nuclei
Popup-Maker < 1.8.12 - Broken Authentication
2 Jul 202609:36
nuclei
NVD
CVE-2019-17574
14 Oct 201914:15
nvd
OpenVAS
WordPress Popup Maker Plugin < 1.8.13 Authorization Bypass Vulnerability
23 Feb 202300:00
openvas
Prion
Deserialization of untrusted data
14 Oct 201914:15
prion
Positive Technologies
PT-2019-15207
14 Oct 201900:00
ptsecurity
RedhatCVE
CVE-2019-17574
22 May 202510:02
redhatcve
Rows per page
NVD
Node
code-atlanticpopup_makerRange<1.8.13wordpress
ParameterPositionPathDescriptionCWE
pum_actionquery param/?pum_action=tools_page_tab_system_infoUnauthenticated attacker can influence do_action arguments to invoke popmake_ or pum_ methods.CWE-639
popmake_actionrequest body/POST body can trigger popmake_ system info actions by supplying popmake_action and popmake-sysinfo parameters.CWE-639
popmake-sysinforequest body/POST body can trigger popmake_ system info actions by supplying popmake_action and popmake-sysinfo parameters.CWE-639

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 02:24Current
9.1High risk
Vulners AI Score9.1
CVSS 26.4
CVSS 3.19.1
EPSS0.09232
162