Cross-Site Request Forgery (CSRF) vulnerability leading to Popup Status Change discovered by BEE-K (Patchstack) in WordPress Popup Builder plugin (versions <= 4.1.0).
Update the WordPress Popup Builder plugin to the latest available version (at least 4.1.1).