CVE-2025-24746 WordPress Popup Maker plugin <= 1.20.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Daniel Iser Popup Maker popup-maker allows Stored XSS.This issue affects Popup Maker: from n/a through = 1.20.2...

WordPress Popup Maker plugin <= 1.19.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Popup Maker versions = 1.19.2...

WordPress Popup Maker Plugin <= 1.19.2 is vulnerable to Broken Access Control

Software Popup Maker Type Plugin Vulnerable versions = 1.19.2 Fixed in 1.20.0 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-47358 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 050e5f472f00 Credits Rafie Muhammad Patchstack...

WordPress Popup Maker Plugin < 1.19.1 is vulnerable to Cross Site Scripting (XSS)

Software Popup Maker Type Plugin Vulnerable versions 1.19.1 Fixed in 1.19.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5561 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 28c13e8e0eab Credits Dmitrii Ignatyev Required...

WordPress Popup Maker WP Plugin <= 1.3.6 is vulnerable to Cross Site Scripting (XSS)

Software Popup Maker WP Type Plugin Vulnerable versions = 1.3.6 Fixed in 1.3.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-34770 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 7bf55dc1ca78 Credits Rayhan Ramdhany Hanaputra Require...

WordPress Popup Maker Plugin <= 1.18.2 is vulnerable to Cross Site Scripting (XSS)

Software Popup Maker Type Plugin Vulnerable versions = 1.18.2 Fixed in 1.18.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2336 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID f2e61eb496fe Credits Tim Coen Required privileg...

WordPress Popup Maker Plugin <= 1.9.2 is vulnerable to Cross Site Scripting (XSS)

Software Popup Maker Type Plugin Vulnerable versions = 1.9.2 Fixed in 1.10.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b1490f38ddc0 Credits Rafie Muhammad Patchstack Required...

WordPress Popup Maker Plugin <= 1.17.1 is vulnerable to Sensitive Data Exposure

Software Popup Maker Type Plugin Vulnerable versions = 1.17.1 Fixed in 1.18.0 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2022-47597 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID d6552fe3bb39 Credits rezaduty Required privilege...

WordPress Popup Maker Plugin <= 1.17.1 is vulnerable to Broken Access Control

Software Popup Maker Type Plugin Vulnerable versions = 1.17.1 Fixed in 1.18.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2022-45819 Patch priority Low CVSS severity Low 3.5 Developer Claim ownership PSID 88c15bfdb17a Credits István Márton Required privileg...

WordPress Popup Maker Plugin <= 1.18.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Popup Maker Type Plugin Vulnerable versions = 1.18.0 Fixed in 1.18.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE N/A Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 5a3eb6eb73f2 Credits Unknown Required privilege...

WordPress Popup Maker plugin <= 1.16.10 - Auth. Stored Cross-Site Scripting (XSS) vulnerability

Auth. Stored Cross-Site Scripting XSS vulnerability discovered by c3p0d4y in WordPress Popup Maker plugin versions = 1.16.10. Solution Update the WordPress Popup Maker plugin to the latest available version at least 1.16.11...

WordPress Popup Maker plugin <= 1.16.4 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered by Roel van Beurden in WordPress Popup Maker plugin versions = 1.16.4. Solution Update the WordPress Popup Maker plugin to the latest available version at least 1.16.5...

WordPress Popup Maker plugin <=1.6.4 - Authenticated Cross-Site Scripting (XSS) vulnerability

Authenticated Cross-Site Scripting XSS vulnerability in WordPress Popup Maker plugin 1.6.4 and earlier versions allows an attacker to inject arbitrary web script or HTML. Solution Update WordPress Popup Maker plugin to the latest available version at least 1.6.5...