VYPR
Unrated severityNVD Advisory· Published May 2, 2024· Updated Mar 25, 2025

Popup Box < 2.2.7 - Popup Deletion via CSRF

CVE-2024-3477

Description

The Popup Box WordPress plugin before 2.2.7 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform unwanted actions, such as deleting popups via CSRF attacks

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.