Lucene search
+L

178 matches found

nuclei
nuclei
added yesterday167 views

Popup-Maker < 1.8.12 - Broken Authentication

An issue was discovered in the Popup Maker plugin before 1.8.13 for WordPress. An unauthenticated attacker can partially control the arguments of the doaction function to invoke certain popmake or pum methods, as demonstrated by controlling content and delivery of popmake-system-info.txt aka the...

9.1CVSS7AI score0.0931EPSS
Exploits2References5
nvd
nvd
added 2026/07/09 8:16 a.m.9 views

CVE-2026-8848

The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.22.0. This is due to the plugin not properly verifying that a user is authorized to perform an...

7.2CVSS0.00659EPSS
Exploits0References12
cvelist
cvelist
added 2026/07/09 7:55 a.m.34 views

CVE-2026-8848 Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder <= 1.22.0 - Missing Authorization to Authenticated (Editor+) Arbitrary Plugin Installation

The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.22.0. This is due to the plugin not properly verifying that a user is authorized to perform an...

7.2CVSS0.00659EPSS
Exploits0References12
cve
cve
added 2026/07/09 7:55 a.m.16 views

CVE-2026-8848

Technical details are not publicly available in the provided documents. Monitor for updates.

7.2CVSS6.2AI score0.00659EPSS
Exploits0References12
euvd
euvd
added 2026/07/09 7:55 a.m.8 views

EUVD-2026-42544

The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.22.0. This is due to the plugin not properly verifying that a user is authorized to perform an...

7.2CVSS6.2AI score0.00659EPSS
Exploits0References12
attackerkb
attackerkb
added 2026/07/09 7:55 a.m.7 views

CVE-2026-8848

The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.22.0. This is due to the plugin not properly verifying that a user is authorized to perform an...

7.2CVSS6.2AI score0.00659EPSS
Exploits0References13
cnnvd
cnnvd
added 2026/03/21 12:0 a.m.13 views

WordPress plugin WowOptin: Next-Gen Popup Maker 代码问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.2CVSS5.9AI score0.00299EPSS
Exploits0References10
redhatcve
redhatcve
added 2026/01/09 9:6 a.m.6 views

CVE-2024-34770

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Popup Maker Popup Maker WP popup-maker-wp allows Stored XSS.This issue affects Popup Maker WP: from n/a through = 1.3.6...

6.5CVSS5.9AI score0.00256EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/07 9:13 a.m.11 views

CVE-2024-2336

The Popup Maker – Popup for opt-ins, lead gen, & more plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 1.18.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5.8AI score0.0034EPSS
Exploits0References1
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-11467

Malware in sbrugna...

6.1CVSS6.2AI score0.01634EPSS
Exploits0References5
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-48053

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00289EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-42394

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00403EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.11 views

EUVD-2024-27290

Malicious code in bioql PyPI...

6.4CVSS8.8AI score0.0034EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-31215

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.0023EPSS
Exploits0References5
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-35040

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00256EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-50357

Malicious code in bioql PyPI...

7.5CVSS7.9AI score0.00612EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.16 views

EUVD-2022-43049

Malicious code in bioql PyPI...

5.5CVSS5AI score0.00622EPSS
Exploits2References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-51712

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00562EPSS
Exploits2References1
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-48673

Malicious code in bioql PyPI...

3.5CVSS6.4AI score0.00409EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.14 views

EUVD-2025-3935

Malicious code in bioql PyPI...

6.5CVSS8.9AI score0.00296EPSS
Exploits0References1
Rows per page
Query Builder