CVE-2024-2008 | Modal Popup Box Plugin up to 1.5.2 on WordPress awl_modal_popup_box_shortcode code injection

Posted by Angelo Barbosa | Apr 3, 2024 | CVE

A vulnerability classified as critical was found in Modal Popup Box Plugin up to 1.5.2 on WordPress. Affected by this vulnerability is the function awl_modal_popup_box_shortcode. The manipulation leads to code injection.

This vulnerability is known as CVE-2024-2008. The attack can be launched remotely. There is no exploit available.

CVE-2024-2008 | Modal Popup Box Plugin up to 1.5.2 on WordPress awl_modal_popup_box_shortcode code injection

Related Posts

CVE-2024-2685 | Campcodes Online Job Finder System 1.0 index.php view cross site scripting

CVE-2024-35184 | Paperless-ngx up to 2.8.5 API access control (GHSA-72w4-hxqq-c256)

CVE-2024-25147 | Liferay Portal/DXP Javascript Style Link cross site scripting

CVE-2024-1288 | Schema & Structured Data for WP & AMP Plugin up to 1.26 on WordPress reCaptcha Key authorization