VYPR
Medium severity5.4NVD Advisory· Published Jun 15, 2022· Updated Jun 17, 2026No known patch

CVE-2022-28612

CVE-2022-28612

Description

Improper Access Control vulnerability leading to multiple Authenticated (contributor or higher user role) Stored Cross-Site Scripting (XSS) vulnerabilities in Muneeb's Custom Popup Builder plugin <= 1.3.1 at WordPress.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.