Code-atlantic Popup_maker
14 CVEs affecting Code-atlantic Popup_maker. Latest disclosed: 2025-01-24. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2019-17574 | Critical | 9.1 | 2019-10-14 | An issue was discovered in the Popup Maker plugin before 1.8.13 for WordPress. An unauthenticated attacker can partially control the arguments of the do_action… |
CVE-2025-24746 | Medium | 6.5 | 2025-01-24 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Daniel Iser Popup Maker popup-maker allows Stored XSS.Thi… |
CVE-2024-7054 | Medium | 6.4 | 2024-08-20 | The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popups Builder plugin for WordPress is vulnerable to Stored Cross-Site Scr… |
CVE-2024-2336 | Medium | 6.4 | 2024-04-09 | The Popup Maker – Popup for opt-ins, lead gen, & more plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all ve… |
CVE-2017-2284 | Medium | 6.1 | 2017-08-02 | Cross-site scripting vulnerability in Popup Maker prior to version 1.6.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
CVE-2024-10583 | Medium | 5.4 | 2024-12-12 | The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popups Builder plugin for WordPress is vulnerable to Stored Cross-Site Scr… |
CVE-2022-4381 | Medium | 5.4 | 2023-01-02 | The Popup Maker WordPress plugin before 1.16.9 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as cont… |
CVE-2022-4362 | Medium | 5.4 | 2023-01-02 | The Popup Maker WordPress plugin before 1.16.9 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as cont… |
CVE-2024-47358 | Medium | 5.3 | 2024-11-01 | Missing Authorization vulnerability in Daniel Iser Popup Maker popup-maker.This issue affects Popup Maker: from n/a through <= 1.19.2. |
CVE-2022-47597 | Medium | 5.3 | 2023-12-20 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Popup Maker Popup Maker – Popup for opt-ins, lead gen, & more.This issue affects Po… |
CVE-2024-5561 | Medium | 4.8 | 2024-09-09 | The Popup Maker WordPress plugin before 1.19.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perf… |
CVE-2022-3690 | Medium | 4.8 | 2022-11-21 | The Popup Maker WordPress plugin before 1.16.11 does not sanitise and escape some of its Popup options, which could allow users with a role as low as Contribut… |
CVE-2022-1104 | Medium | 4.8 | 2022-05-09 | The Popup Maker WordPress plugin before 1.16.5 does not sanitise and escape some of its Popup settings, which could allow high privilege users such as admin to… |
CVE-2022-45819 | Low | 3.5 | 2024-12-13 | Missing Authorization vulnerability in Popup Maker Popup Maker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Popup… |