Login/Signup Popup

xootix

Developer

3.1.2

Latest version

40,000

Installations

No date

Last updated

WordPress Plugin

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Security Contributors

Vulnerability history

0 present

8 patched

3 Mitigation rules

Cross Site Scripting (XSS) Vulnerability
<= 2.9.4
19/06/2025
Authenticated (Contributor+) Stored Cross-Site Scripting via xoo_el_action Shortcode vulnerability
<= 2.8.5
19/02/2025
Missing Authorization to Arbitrary Options Exposure vulnerability
<= 2.7.2
06/06/2024
Missing Authorization to Arbitrary Options Update
<= 2.7.2
05/06/2024
Cross-Site Request Forgery (CSRF) vulnerability
<= 2.3
26/06/2023
Cross-Site Request Forgery (CSRF) vulnerability leading to Arbitrary Options Update
<= 2.2
13/01/2022
Reflected Cross-Site Scripting (XSS) vulnerability
<= 2.1
17/11/2021
Authenticated Stored Cross-Site Scripting (XSS) vulnerability
<= 1.4
14/05/2020