CVE-2025-4205 | Popup Maker Plugin up to 1.20.4 on WordPress popupID cross site scripting

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability, which was classified as problematic, was found in Popup Maker Plugin up to 1.20.4 on WordPress. Affected is an unknown function. The manipulation of the argument popupID leads to cross site scripting.

This vulnerability is traded as CVE-2025-4205. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-4205 | Popup Maker Plugin up to 1.20.4 on WordPress popupID cross site scripting

Post correlati

CVE-2022-48835 | Linux Kernel up to 5.10.107/5.15.30/5.16.16 mpt3sas mpt3sas_base_sync_reply_irqs memory corruption

CVE-2024-0232 | SQLite up to 3.43.1 sqlite3.c jsonParseAddNodeArray use after free

CVE-2024-0897 | Beaver Builder Plugin up to 2.7.4.2 on WordPress cross site scripting

CVE-2024-31202 | Plug&Track Thermoscan IP 20211103 permission assignment