Medium severity5.4NVD Advisory· Published Jul 22, 2022· Updated Jun 17, 2026
CVE-2022-29495
CVE-2022-29495
Description
Cross-Site Request Forgery (CSRF) vulnerability in Sygnoos Popup Builder plugin <= 4.1.11 at WordPress allows an attacker to update plugin settings.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <=4.1.11
- Sygnoos/Popup Builder (WordPress plugin)v5Range: <= 4.1.11
Patches
Vulnerability mechanics
References
2- patchstack.com/database/vulnerability/popup-builder/wordpress-popup-builder-plugin-4-1-11-cross-site-request-forgery-csrf-leading-to-plugin-settings-updatenvdPatchThird Party Advisory
- wordpress.org/plugins/popup-builder/nvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.