Lucene search
Custom Popup Builder ProjectCustom Popup Builder
2 matches found
CVE-2024-3236
The Popup Builder WordPress plugin before 1.1.33 does not sanitise and escape some of its Notification fields, which could allow users such as contributor and above to perform Stored Cross-Site Scripting attacks.
5.4CVSS5.4AI score0.00211EPSS
Web
CVE-2022-28612
Improper Access Control vulnerability leading to multiple Authenticated (contributor or higher user role) Stored Cross-Site Scripting (XSS) vulnerabilities in Muneeb's Custom Popup Builder plugin
5.4CVSS5.4AI score0.00136EPSS