Authenticated Cross-Site Scripting (XSS) vulnerability in WordPress Popup Maker plugin 1.6.4 and earlier versions allows an attacker to inject arbitrary web script or HTML.
Update WordPress Popup Maker plugin to the latest available version (at least 1.6.5)
CPE | Name | Operator | Version |
---|---|---|---|
popup maker | le | 1.6.4 |