Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
EssentialpluginPopup Anything*

3 matches found

CVE
CVEadded 2022/07/25 1:15 p.m.47 views

CVE-2022-2115

The Popup Anything WordPress plugin before 2.1.7 does not sanitise and escape a parameter before outputting it back in a frontend page, leading to a Reflected Cross-Site Scripting

6.1CVSS6AI score0.00287EPSS
CVE
CVEadded 2023/03/29 1:15 p.m.36 views

CVE-2022-38077

Cross-Site Request Forgery (CSRF) vulnerability in WP OnlineSupport, Essential Plugin Popup Anything – A Marketing Popup and Lead Generation Conversions plugin

8.8CVSS6.5AI score0.0007EPSS
CVE
CVEadded 2021/11/29 9:15 a.m.26 views

CVE-2021-24883

The Popup Anything WordPress plugin before 2.0.4 does not escape the Link Text and Button Text fields of Popup, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks

5.4CVSS5.3AI score0.00231EPSS