3 matches found
WordPress Popup Anything Plugin <= 2.8 is vulnerable to Broken Access Control
Software Popup Anything Type Plugin Vulnerable versions = 2.8 Fixed in 2.8.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-32601 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 740d15898275 Credits Steven Julian Required privilege...
WordPress Popup Anything Plugin <= 2.7 is vulnerable to Broken Access Control
Software Popup Anything Type Plugin Vulnerable versions = 2.7 Fixed in 2.8 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-40200 Patch priority Medium CVSS severity Medium 5.3 Developer Claim ownership PSID 4b0a6b545433 Credits Abdi Pranata Required...
WordPress Popup Anything plugin <= 2.1.6 - Reflected Cross-Site Scripting (XSS) vulnerability
Reflected Cross-Site Scripting XSS vulnerability discovered by ZhongFu Su aka JrXnm WuHan University in WordPress Popup Anything plugin versions = 2.1.6. Solution Update the WordPress Popup Anything plugin to the latest available version at least 2.1.7...