CVE-2022-1894
Popup Builder < 4.1.11 - Admin+ Stored Cross-Site Scripting
The Popup Builder WordPress plugin before 4.1.11 does not escape and sanitize some settings, which could allow high privilege users to perform Stored Cross-Site Scripting attacks when the unfiltred_html is disallowed
Affected products
Unknown · Popup Builder – Create highly converting, mobile friendly marketing popups.Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →