WordPress Simple Popup Plugin plugin <= 4.5 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Krzysztof Zając - CERT PL in WordPress Plugin Simple Popup versions = 4.5...

EUVD-2023-28462

Malicious code in bioql PyPI...

CVE-2023-24406

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Muneeb ur Rehman Simple PopUp plugin = 1.8.6 versions...

CVE-2024-53741 WordPress Simple Popup plugin <= 4.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Garrett Grimm Simple Popup simple-popup-plugin allows DOM-Based XSS.This issue affects Simple Popup: from n/a through = 4.6...

PT-2024-39086 · Unknown · Simple Popup Plugin

Name of the Vulnerable Software and Affected Versions: The Simple Popup Plugin versions up to, and including, 4.5 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the plugin's popup shortcode, allowing authenticated attackers wi...

CVE-2023-24406

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Muneeb ur Rehman Simple PopUp plugin = 1.8.6 versions...

CVE-2023-24406

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Muneeb ur Rehman Simple PopUp plugin = 1.8.6 versions...

CVE-2023-24406

The CVE-2023-24406 entry describes a Stored XSS in WordPress Simple Popup Images Plugin (admin+). Affected: Simple Popup plugin, versions