VYPR

Popup Maker

by Code Atlantic

Source repositories

CVEs (6)

  • CVE-2017-2284MedAug 2, 2017
    risk 0.40cvss 6.1epss 0.02

    Cross-site scripting vulnerability in Popup Maker prior to version 1.6.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2025-24746MedJan 24, 2025
    risk 0.35cvss 6.5epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Daniel Iser Popup Maker popup-maker allows Stored XSS.This issue affects Popup Maker: from n/a through <= 1.20.2.

  • CVE-2024-2336MedApr 9, 2024
    risk 0.35cvss 6.4epss 0.00

    The Popup Maker – Popup for opt-ins, lead gen, & more plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up to, and including, 1.18.2 due to insufficient input sanitization and output escaping on user supplied…

  • CVE-2024-47358MedNov 1, 2024
    risk 0.27cvss 5.3epss 0.00

    Missing Authorization vulnerability in Daniel Iser Popup Maker popup-maker.This issue affects Popup Maker: from n/a through <= 1.19.2.

  • CVE-2022-47597MedDec 20, 2023
    risk 0.27cvss 5.3epss 0.01

    Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Popup Maker Popup Maker – Popup for opt-ins, lead gen, & more.This issue affects Popup Maker – Popup for opt-ins, lead gen, & more: from n/a through 1.17.1.

  • CVE-2022-45819LowDec 13, 2024
    risk 0.16cvss 3.5epss 0.00

    Missing Authorization vulnerability in Popup Maker Popup Maker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Popup Maker: from n/a through 1.17.1.