Popup | Custom Popup Builder 2

To plugin page No VDP

Report

New Existing

WordPress Popup | Custom Popup Builder Plugin <= 1.3 is vulnerable to Denial of Service Attack

7.5

High severity CVSS 3.1 score

Not known to be exploited Report an attack

Protect your sites with automated security

Enable Protection

Patchstack Professional users are protected since 09.12.2022

Enable Protection

Update the WordPress Popup | Custom Popup Builder plugin to the latest available version (at least 1.3.1).

Felipe de Avila discovered and reported this Denial of Service Attack vulnerability in WordPress Popup | Custom Popup Builder Plugin. A denial of service attack occurs when a malicious actor can cause the endpoint, or website, to crash or refuse to serve requests to one or more users by causing it to hang, crash or make unusable. This vulnerability has been fixed in version 1.3.1.

Improper Access Control vulnerability leading to multiple Authenticated Stored XSS <= 1.3.1

5.4

14.06.2022

Report to Patchstack Alliance bounty platform and earn monthly cash prizes.

Learn more