CVE-2025-15611 | Popup Box Plugin up to 5.4.x on WordPress add_or_edit_popupbox cross-site request forgery

Inserito da Angelo Barbosa | Apr 7, 2026 | CVE

A vulnerability was found in Popup Box Plugin up to 5.4.x on WordPress. It has been declared as problematic. Affected by this vulnerability is the function add_or_edit_popupbox. Such manipulation leads to cross-site request forgery.

This vulnerability is listed as CVE-2025-15611. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.

CVE-2025-15611 | Popup Box Plugin up to 5.4.x on WordPress add_or_edit_popupbox cross-site request forgery

Post correlati

CVE-2025-36428 | IBM DB2/DB2 Connect Server up to 11.5.9/12.1.3 RPSCAN Feature improper validation of specified quantity in input

CVE-2024-47924 | Boa cross site scripting

CVE-2024-10172 | voidcoders WPBakery Visual Composer WHMCS Elements Plugin up to 1.0.4 on WordPress Shortcode void_wbwhmcse_laouts_search cross site scripting

CVE-2024-35581 | SourceCodester Laboratory Management System 1.0 Borrower Name cross site scripting