CVE-2026-1165 | ays-pro Popup Box Plugin up to 6.1.1 on WordPress publish_unpublish_popupbox cross-site request forgery

Inserito da Angelo Barbosa | Gen 31, 2026 | CVE

A vulnerability classified as problematic has been found in ays-pro Popup Box Plugin up to 6.1.1 on WordPress. Affected by this vulnerability is the function publish_unpublish_popupbox. Performing a manipulation results in cross-site request forgery.

This vulnerability is cataloged as CVE-2026-1165. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-1165 | ays-pro Popup Box Plugin up to 6.1.1 on WordPress publish_unpublish_popupbox cross-site request forgery

Post correlati

CVE-2025-67159 | Vatilon 1.12.37-20240124 cleartext transmission

CVE-2023-43517 | Qualcomm QAM8255P Automotive Multimedia memory corruption

CVE-2024-3763 | Emlog Pro 2.2.10 Post Tag /admin/tag.php cross site scripting

CVE-2023-53258 | Linux Kernel up to 6.1.42/6.4.7 AMD Display vblank_nom privilege escalation