Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
code-atlantic popup maker vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2019-17574
An issue exists in the Popup Maker plugin prior to 1.8.13 for WordPress. An unauthenticated attacker can partially control the arguments of the do_action function to invoke certain popmake_ or pum_ methods, as demonstrated by controlling content and delivery of popmake-system-inf...
Code-atlantic Popup Maker
7.5
CVSSv3
CVE-2022-47597
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Popup Maker Popup Maker – Popup for opt-ins, lead gen, & more.This issue affects Popup Maker – Popup for opt-ins, lead gen, & more: from n/a up to and including 1.17.1.
Code-atlantic Popup Maker
6.1
CVSSv3
CVE-2017-2284
Cross-site scripting vulnerability in Popup Maker prior to version 1.6.5 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Code-atlantic Popup Maker 1.0.0
Code-atlantic Popup Maker 1.0.1
Code-atlantic Popup Maker 1.0.2
Code-atlantic Popup Maker 1.0.3
Code-atlantic Popup Maker 1.0.4
Code-atlantic Popup Maker 1.0.5
Code-atlantic Popup Maker 1.1.0
Code-atlantic Popup Maker 1.1.1
Code-atlantic Popup Maker 1.1.2
Code-atlantic Popup Maker 1.1.3
Code-atlantic Popup Maker 1.1.4
Code-atlantic Popup Maker 1.1.5
Code-atlantic Popup Maker 1.1.6
Code-atlantic Popup Maker 1.1.7
Code-atlantic Popup Maker 1.1.8
Code-atlantic Popup Maker 1.1.9
Code-atlantic Popup Maker 1.1.10
Code-atlantic Popup Maker 1.2.0
Code-atlantic Popup Maker 1.2.1
Code-atlantic Popup Maker 1.2.2
Code-atlantic Popup Maker 1.3.0
Code-atlantic Popup Maker 1.3.1
5.4
CVSSv3
CVE-2022-4381
The Popup Maker WordPress plugin prior to 1.16.9 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks
Code-atlantic Popup Maker
5.4
CVSSv3
CVE-2022-4362
The Popup Maker WordPress plugin prior to 1.16.9 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks
Code-atlantic Popup Maker
4.8
CVSSv3
CVE-2022-3690
The Popup Maker WordPress plugin prior to 1.16.11 does not sanitise and escape some of its Popup options, which could allow users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks, which could be used against admins
Code-atlantic Popup Maker
4.8
CVSSv3
CVE-2022-1104
The Popup Maker WordPress plugin prior to 1.16.5 does not sanitise and escape some of its Popup settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
Code-atlantic Popup Maker
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started