4 matches found
CVE-2022-2404
The WP Popup Builder WordPress plugin before 1.2.9 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...
CVE-2022-2404
The CVE-2022-2404 entry concerns the WP Popup Builder WordPress plugin prior to 1.2.9. Affected component: the plugin’s handling of a parameter in page output. Root cause: failure to sanitize and escape the parameter before reflecting it in the page, leading to a Reflected Cross-Site Scripting vu...
CVE-2022-2404 WP Popup Builder < 1.2.9 - Reflected Cross-Site Scripting
The WP Popup Builder WordPress plugin before 1.2.9 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...
CVE-2022-2404 WP Popup Builder < 1.2.9 - Reflected Cross-Site Scripting
The WP Popup Builder WordPress plugin before 1.2.9 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...