CVE-2020-10195
The CVE-2020-10195 issue affects the Popup Builder plugin for WordPress (versions prior to 3.64.1). An authenticated subscriber-level attacker can send a POST to wp-admin/admin-post.php, using actions such as sgpbSaveSettings, csv_file, or sgpb_system_info, to modify settings, export subscriber d...