39 matches found
WordPress Popup Anything plugin <= 2.9.1 - Backdoor vulnerability
Backdoor vulnerability discovered by ? in WordPress Plugin Popup Anything versions = 2.9.1...
EUVD-2021-11795
Malware in sbrugna...
EUVD-2022-40680
Malicious code in bioql PyPI...
EUVD-2024-30403
Malicious code in bioql PyPI...
CVE-2024-32601
Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Popup Anything.This issue affects Popup Anything: from n/a through 2.8...
CVE-2022-38077
Cross-Site Request Forgery CSRF vulnerability in WP OnlineSupport, Essential Plugin Popup Anything – A Marketing Popup and Lead Generation Conversions plugin = 2.2.1 versions...
CVE-2024-32601
Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Popup Anything.This issue affects Popup Anything: from n/a through 2.8...
CVE-2024-32601
CVE-2024-32601 is a Missing Authorization vulnerability affecting WP OnlineSupport/Popup Anything until v2.8. The CVSS v3.1 base score is 5.3 (Network, Low attack complexity, No privileges required, No user interaction; Confidentiality impact Low). Exploitation status is not observed in the provi...
CVE-2024-32601 WordPress Popup Anything plugin <= 2.8 - Broken Access Control vulnerability
Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Popup Anything.This issue affects Popup Anything: from n/a through 2.8...
CVE-2024-32601 WordPress Popup Anything plugin <= 2.8 - Broken Access Control vulnerability
Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Popup Anything.This issue affects Popup Anything: from n/a through 2.8...
WordPress Plugin Popup Anything 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPress...
WordPress Popup Anything plugin <= 2.8 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Steven Julian Patchstack Alliance in WordPress Plugin Popup Anything versions = 2.8...
WordPress Popup Anything Plugin <= 2.8 is vulnerable to Broken Access Control
Software Popup Anything Type Plugin Vulnerable versions = 2.8 Fixed in 2.8.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-32601 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 740d15898275 Credits Steven Julian Required privilege...
WordPress Popup Anything Plugin <= 2.7 is vulnerable to Broken Access Control
Software Popup Anything Type Plugin Vulnerable versions = 2.7 Fixed in 2.8 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-40200 Patch priority Medium CVSS severity Medium 5.3 Developer Claim ownership PSID 4b0a6b545433 Credits Abdi Pranata Required...
CVE-2022-38077
Cross-Site Request Forgery CSRF vulnerability in WP OnlineSupport, Essential Plugin Popup Anything – A Marketing Popup and Lead Generation Conversions plugin = 2.2.1 versions...
CVE-2022-38077
Cross-Site Request Forgery CSRF vulnerability in WP OnlineSupport, Essential Plugin Popup Anything – A Marketing Popup and Lead Generation Conversions plugin = 2.2.1 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in WP OnlineSupport, Essential Plugin Popup Anything – A Marketing Popup and Lead Generation Conversions plugin = 2.2.1 versions...
CVE-2022-38077 WordPress Popup Anything Plugin <= 2.2.1 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in WP OnlineSupport, Essential Plugin Popup Anything – A Marketing Popup and Lead Generation Conversions plugin = 2.2.1 versions...
CVE-2022-38077 WordPress Popup Anything Plugin <= 2.2.1 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in WP OnlineSupport, Essential Plugin Popup Anything – A Marketing Popup and Lead Generation Conversions plugin = 2.2.1 versions...
CVE-2022-38077
CVE-2022-38077 is a CSRF vulnerability affecting the WP OnlineSupport / Popup Anything plugin for WordPress, in versions ≤ 2.2.1. The issue permits unauthorized cross-site requests that can be executed by an attacker due to unauthenticated access requirements. A fix has been released: upgrade to ...