CVE-2025-4205 | Popup Maker Plugin up to 1.20.4 on WordPress popupID cross site scripting

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability, which was classified as problematic, was found in Popup Maker Plugin up to 1.20.4 on WordPress. Affected is an unknown function. The manipulation of the argument popupID leads to cross site scripting.

This vulnerability is traded as CVE-2025-4205. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-4205 | Popup Maker Plugin up to 1.20.4 on WordPress popupID cross site scripting

Post correlati

CVE-2024-47562 | Siemens SINEC Security Monitor prior 4.9.0 command injection (ssa-430425)

CVE-2024-1461 | Livemesh Elementor Addons Plugin up to 8.3.4 on WordPress Team Members Widget cross site scripting

CVE-2025-0583 | aEnrich Technology a+HRD up to 7.5 cross site scripting

CVE-2024-10710 | YaDisk Files Plugin up to 1.2.5 on WordPress Setting cross site scripting